Two-step verification will be mandatory at KI 2021
Multi-factor authentication, also known as two-step verification, means logging in using two steps: your KI ID and password, and a code or authorization via an app on your phone. Two-step verification will be mandatory for all employees in spring 2021, but you can activate the function now. The introduction of two-step verification is a measure to increase the security of your KI account and to prevent your account from being hijacked.
Two-step verification protects your user identity at KI (prevents ID hijacking) and increases security when you log in with your KI account to KI's various IT services and systems.
This function is used to confirm that you are the one who is signing in to KI's IT services, such as Outlook, Microsoft Teams, SharePoint, and OneDrive. The introduction of two-step verification only affects employees at KI, it does not affect students.
When does the introduction of two-step verification take place?
When two-step verification is introduced to your department, you will receive further information via email, but you can activate the two-step verification now – you don't have to wait.
You will also find a preliminary timetable on this page under the heading "Implementation timetable".
How to enable two-step verification for your KI account
To enable two-step verification, you need a mobile phone that can install apps from the Appstore or Google Play.
The introduction also means that Pointsharp will shut down and be replaced by the Microsoft Authenticator app. People who use KI's Cisco Anyconnect (VPN) service, therefore, need to replace Pointsharp with the Microsoft Authenticator app on their mobile before 31 May 2021.
Guide to downloading and activating the app on your phone:
Multi-factor authentication via the Microsoft Authenticator app
If you have already activated the Microsoft Authenticator app and verified your sign-in via the app, you don't need to do anything.
For you who don´t have a mobile phone
You can apply for a code reader (2-factor token) to do your two-step verification. You who already have a code reader for VPN can reuse it. More information: For you who dont have a mobile phone
Why is two-step verification being introduced at KI?
Two-step verification will increase the security of your KI account and prevent your account at KI from being hijacked If someone comes across the password to your KI account, they will be prevented from logging into your account when the two-step verification is enabled because your login also needs to be verified with your phone when a login attempt is made from an external device.
During autumn 2020, the Swedish Civil Contingencies Agency published, Provisions on information security and security measures in information systems for government agencies, which states that multi-factor authentication should be used 'when accessing the production environment via an external network or when accessing information systems deemed to be in need of enhanced protection'. (MSBFS2020:7, Chapter 4, section 5)
Timetable for implementation
|Department||Deadline for activating two-step verification|