Multi-Factor Authentication (MFA) for all M365 guest users

NSW Health is introducing Multi-Factor Authentication (MFA) for all M365 guest users on 27th November 2024.

A guest user is an external user who has been invited by an NSW Health staff member to participate in a Microsoft Team or has been sent a NSW Health resource.

MFA is a vital security measure designed to protect sensitive information by requiring multiple forms of verification before granting access to our M365 Platform. You may have already used this procedure when interacting with other government agencies or financial institutions.

What is the new process for guests?

When signing into the NSW Health sign-in page using your existing credentials, you will be prompted to download the Microsoft Authenticator application onto your phone (if you haven’t already done so).

After completing a few key steps, you will be required to enter the verification code on the NSW Health sign-in page, generated by the Microsoft Authenticator application.

The setup process is straight forward, and you will be guided through the authentication steps.

All guest users will be prompted to sign in using the Microsoft Authenticator application verification code every 14 days.

Should you experience any difficulties in accessing the NSW Health resources, please contact the person who shared the information with you and/or your local IT department.

Multi-Factor Authentication for M365 guest users - Quick reference guide

Further information

If you haven’t already done so, please take a few moments to read the Quick Reference Guide attached on setting up multi-factor authentication for guest users.

NSW Health staff only

Should your guest require support, you will need to raise a SARA General IT Enquiry on their behalf, which is in line with the current process.