970-430-5877
support@olivetech.co
Join Remote Session
Portal

Enable Multi-Factor Authentication (MFA) on Windows 11

Multi-Factor Authentication (MFA) adds an extra layer of security by requiring more than just a password to access your accounts. This guide will show you how to enable MFA on Windows 11, aligning with CIS Control 4.5 (Controlled Use of Administrative Privileges).

Prerequisites

Before you begin, ensure that you:

  • Have a device running Windows 11.
  • Are logged in with an administrator account.
  • Have a secondary authentication method ready (e.g., a mobile device for authentication apps).

Step 1 — Opening Settings

First, open the Settings app.

  1. Click on the Start menu.
  2. Select the Settings icon (it looks like a gear).

Step 2 — Navigating to Accounts

Next, navigate to the Accounts section.

  1. In the Settings window, click on Accounts in the left-hand menu.

Step 3 — Setting Up a PIN

Before setting up MFA, ensure you have a PIN configured.

  1. Sign-in Options: Click on Sign-in options under the Accounts menu.
  2. Windows Hello PIN: Click on Windows Hello PIN and select Add.
  3. Follow the prompts to set up your PIN.

Step 4 — Enabling Multi-Factor Authentication (MFA)

Enable MFA through Windows Hello or a third-party authentication app.

Using Windows Hello

  1. Windows Hello Face/Fingerprint: If your device supports it, set up Windows Hello Face or Fingerprint by clicking on the respective option under Sign-in options and following the setup instructions.

Using a Third-Party Authentication App

  1. Microsoft Authenticator: Download the Microsoft Authenticator app on your mobile device.
  2. Two-Step Verification: Go to account.microsoft.com/security and sign in with your Microsoft account.
  3. Click on Advanced security options.
  4. Set Up Two-Step Verification: Follow the instructions to set up two-step verification using the Microsoft Authenticator app.
  5. Scan the QR Code: Use the Authenticator app to scan the QR code provided.
  6. Complete Setup: Follow the remaining prompts to complete the setup.

Why Multi-Factor Authentication Matters

Enabling MFA significantly increases the security of your accounts by requiring a second form of verification. This helps protect your business from unauthorized access and potential breaches.

Related CIS Control

This step satisfies CIS Control 4.5: Controlled Use of Administrative Privileges, which focuses on securing and managing administrative privileges to reduce vulnerabilities.

By following these steps, you can enhance the security of your Windows 11 systems. Stay tuned for more tips on managing your business’s cybersecurity risk effectively.

For more details on securing your business, check out our CyberGuardian Framework.