Published: 2021-05-18 13:37 | Updated: 2021-05-27 11:45

Two-step verification will be mandatory at KI 2021

Multi-factor authentication, also known as two-step verification, means logging in using two steps: your KI ID and password, and a code or authorization via an app on your phone. Two-step verification will be mandatory for all employees in spring 2021, but you can activate the function now. The introduction of two-step verification is a measure to increase the security of your KI account and to prevent your account from being hijacked.

Two-step verification protects your user identity at KI (prevents ID hijacking) and increases security when you log in with your KI account to KI's various IT services and systems.  

This function is used to confirm that you are the one who is signing in to KI's IT services, such as Outlook, Microsoft Teams, SharePoint, and OneDrive. The introduction of two-step verification only affects employees at KI, it does not affect students. 

When does the introduction of two-step verification take place? 

When two-step verification is introduced to your department, you will receive further information via email, but you can activate the two-step verification now – you don't have to wait.  

You will also find a preliminary timetable on this page under the heading "Implementation timetable". 

How to enable two-step verification for your KI account 

To enable two-step verification, you need a mobile phone that can install apps from the Appstore or Google Play. 

The introduction also means that Pointsharp will shut down and be replaced by the Microsoft Authenticator app. People who use KI's Cisco Anyconnect (VPN) service, therefore, need to replace Pointsharp with the Microsoft Authenticator app on their mobile before 31 May 2021.  

Guide to downloading and activating the app on your phone:  
Multi-factor authentication via the Microsoft Authenticator app 

If you have already activated the Microsoft Authenticator app and verified your sign-in via the app, you don't need to do anything. 

For you who don´t have a mobile phone

You can apply for a code reader (2-factor token) to do your two-step verification. You who already have a code reader for VPN can reuse it. More information: For you who dont have a mobile phone

Why is two-step verification being introduced at KI? 

Two-step verification will increase the security of your KI account and prevent your account at KI from being hijacked If someone comes across the password to your KI account, they will be prevented from logging into your account when the two-step verification is enabled because your login also needs to be verified with your phone when a login attempt is made from an external device. 

During autumn 2020, the Swedish Civil Contingencies Agency published, Provisions on information security and security measures in information systems for government agencies, which states that multi-factor authentication should be used 'when accessing the production environment via an external network or when accessing information systems deemed to be in need of enhanced protection'. (MSBFS2020:7, Chapter 4, section 5) 

Timetable for implementation

Department Deadline for activating two-step verification
UF/UL 2021-05-17
KM 2021-05-24
IMM 2021-05-27
KI-SÖS 2021-05-31
MBB 2021-06-01
LABMED 2021-06-02
CLINTEC 2021-06-07
MedH 2021-06-08
NVS 2021-06-09
GPH 2021-06-10
MWLC 2021-06-14
UoL 2021-06-14
CMB 2021-06-14
MTC 2021-06-15
INCF 2021-06-15
Neuro 2021-06-16
FYFA 2021-06-17
MedS 2021-08-24
Unitand 2021-08-30
CNS 2021-08-31
BioNut 2021-09-01
Dentmed 2021-09-01
KIB 2021-09-01
MEB 2021-09-06
KBH 2021-09-07
MMK 2021-09-08
KI DS 2021-09-09
OnkPat 2021-09-09