Professional Documents
Culture Documents
The Microsoft Authenticator is an app enabling Multi-Factor Authentication (or MFA), a security system that verifies a user’s identity by generating
time-based passwords, providing enhanced security.
At Firmenich, Multi-Factor Authentication is required to access different applications based on criticality of the information accessed, from where
this information is accessed, or even depending on other external situations like cybersecurity risk levels.
This QuickCard will guide you in the setup of the solution as well as on how to perform some basic activities with it.
1. Download Microsoft Authenticator app on your mobile device 3. Sign-In with Authenticator (Notification Method)
2. Configure Microsoft Authenticator application: 4. Sign-In with Authenticator (Verification Code/Token Method)
Install
Using your Firmenich PC connected to Office network or via Click Next again, as you have already installed Microsoft Authenticator as
Global Protect, open a browser and sign in into: per previous steps.
https://aka.ms/mfasetup Click Next to set up your account.
Click Next.
You get a QR code, which you’ll have to scan with your Open the Microsoft Authenticator application.
mobile device. Add a Work account, by clicking the + icon and select Work or school account.
Due to security reasons, Microsoft Authenticator Registration is restricted to trusted locations or devices. There might be some
reasons where you don’t have access to a trusted location or device, and therefore, this restriction can be temporarily removed to
allow you registering your Authenticator App from your device.
Please raise a START ticket with the subject “Unrestricted Authenticator Registration for <PID or email>” or contact IS Service Desk.
You can also consult the dedicated Knowledge Base Article : KB0004226
You are prompted to login with You’ll receive a notification to verify the request in
Notification method. Microsoft Authenticator App.
Simply Approve.
If you don’t answer to a notification request, you You are prompted to login with
will be prompted with the following screen. You One-Time Password Code method. From your mobile device/token
request to “Enter a security code”
You’ll find the One-Time code in
your Microsoft Authenticator App
opening your account or, on your
hardware token display.
You are prompted to login with You must click on Deny, to deny this unexpected request and click on Report
Notification method, while you Fraud to alert the IS Security team.
didn’t attempt to access any service.
The Information Security Team will contact you to handle this security incident.
Using your Firmenich device (corporate Click on Add method, select Authenticator app and click on Add.
mobile or PC), open a browser and sign
in into https://mysignins.microsoft.com
Using your Firmenich device (corporate Click on Delete to delete the desired authentication method.
mobile or PC), open a browser and sign Please make sure you do not delete a valid authentication method.
in into https://mysignins.microsoft.com
There might be some cases in which you lost access to your Authenticator Application: mobile lost, stolen or broken, or even you
uninstall/reset the Authenticator App itself.
• In case you lose access to all your registered devices, please raise a START ticket with the subject “Reset Authenticator for <PID>” or
contact the IS Service Desk. This will allow you to perform the initial registration again.
You can also consult the dedicated Knowledge Base Article : KB0004226.
• If you are not a Firmenich Employee, please explain your situation via e-mail to your Firmenich Manager/Contact.
He/she will have to open a Service Request via START as explained at KB0004226.
• If you still have access to a second Microsoft Authenticator App registered, you will be able to Self-Service Delete your lost device from the
authorized devices list and add a new one through https://aka.ms/mfasetup .