Concordia is currently onboarding all role accounts to multi-factor authentication to ensure that digital assets, information, and user identities remain safe. Instructional and Information technology Services (IITS) is actively contacting role account owners via and with detailed instructions on the next step required to maintain access to your account to ensure a smooth transition.

Setting up MFA on your role account

Step 1 

Properly configure MFA to your role account(s) using one of the following options as a way of generating your second-factor authentication:

Step 2

Make sure you are using a modern email client that supports MFA to maintain access. To upgrade or configure your account to a modern email client please select the step-by-step guide for your preferred computer and/or mobile email client.

What is Modern email client? Modern email clients use modern authentication practices at sign-in, such as MFA, rather than only requiring a single username and password when accessing an account. This provides greater security for your accounts and the information within.  

Step 3

Contact the IT Service Desk at or 848-2424 ext. 7613 if there are any additional users who need access to your role account. A technician will be assigned to your request to assist you with adding additional account users. 

Increasing the level of security

Setting up MFA on role accounts

In order to properly activate MFA on a role account, the role account owner and all users must be onboarded at the same time through a one-on-one session with an IITS representative. The entire process takes roughly 45 minutes.

Some mailboxes associated with role accounts may be converted to shared mailboxes (or Secured mailboxes). Roll accounts (associated mailboxes) that maintain the following four criteria will be converted:  

  1. There is a mailbox associated with the role account. 
  2. Users are reading/sending emails using the mailbox associated with the role account.
  3. Users are viewing contact/calendar information from the mailbox associated with the role account. 
  4. Users are booking rooms using the mailbox associated with the role account.

What is the difference between a shared/secured mailbox and a role account mailbox?

Role accounts mailboxes are accessible to all users by signing into Outlook with the same username and password. When using the role account, you cannot identify who has sent or added content.

Shared/Secured mailboxes are accessible using an individual's personal account and credentials (netname/password/MFA). A shared/secured mailbox will be visible as an additional mailbox in your personal Outlook. Because shared/secured mailbox users sign in through their own personal accounts, the content they send and add can be traced back to their credentials. Additionally, because they are signing into their personal accounts using MFA, it eliminates the need to onboard shared/secured mailboxes to MFA.

Important information about your new shared/secured mailbox:

  • You will no longer be able to access MS365 accounts via your shared/secured mailbox, instead you will need to access MS365 through your personal account.
  • To access your shared/secured mailbox on your mobile device, you will need to add your shared/secured mailbox into your Outlook mobile app. For assistance, contact the Service Desk 
  • Currently, the Apple mail app and Thunderbird mail app are not compatible. For assistance, contact the Service Desk 
  • When using OWA to access your mail you will no longer be able to access your shared/secured mailbox using your role account credentials. 


Need help? We are here to support you

For any questions related to multi-factor authentication, request support or call the Service Desk at extension 7613.

Back to top

© Concordia University