Starting in autumn 2025, KTH will introduce multifactor authentication (MFA) for all KTH accounts. Here you will find instructions on how to activate MFA for your KTH account.
To protect your KTH account, you need to use an app to confirm who you are when you log in to KTH services. You do this via multifactor authentication (MFA). This means that you log in in two steps: using your username and password, and with approval via an app on your phone.
Start by activating MFA using the following three steps. You need access to both a computer and your mobile phone with an internet connection.
You only need to activate MFA once. After activation, you simply log in with your password and verification via your mobile phone.
Click on the headings and follow the instructions.
When you open the app, you may be asked about Microsoft's privacy policy. Select Agree.
The app may then ask about app data usage. Select Continue.
Grant the app access to notifications, camera, and location when prompted.
Do this step with your computer.
Right-click on the link
aka.ms/mfasetup
and choose to open the link in a private window or incognito mode.
Enter your login details in the format username@ug.kth.se in the login dialog.
You will then be redirected to KTH's login service. Enter the password for your KTH account.
You can now proceed to the next step to add a login method.
In this step, you need both your computer and your mobile phone.
Once you have logged in via your computer's browser, click Add sign-in method.
Click on Microsoft Authenticator.
Microsoft Authenticator will now prompt you to install the app on your mobile phone, which you did in step 1 of this guide.
Pick up your mobile phone and go to the Microsoft Authenticator app. Click the plus sign in the top right of the app. Then choose to add a Work or school account and choose to Scan QR code.
Click Next in the box on your computer.
Scan the QR code that appears on your computer using your mobile phone.
After you have scanned the QR code, click Next in the box on your computer.
Now the configuration will want to test the authentication. A number will appear in the browser on your computer and a push notification will be sent to your mobile phone to approve the login.
On your mobile phone: Enter the same number that appears in the browser on your computer and approve the authentication.
After you have approved authentication, a message will appear stating that the notification has been approved. Click Next to complete the configuration.
Activation is complete! You can now start using MFA when you log in with your KTH account.
If you change your mobile phone
Do you have a new mobile phone? If you have MFA enabled on another mobile phone before, you need to add MFA to your new phone before erasing or resetting your old phone.
To add MFA to another phone, follow the same guide as above. The difference is that in “Step 2: Log in with your KTH account” you need to approve the login using the mobile phone you have MFA enabled on.
If you have erased/reset or lost your old phone without first activating MFA on your new phone, you need to
Contact KTH IT-Support
.
Why KTH is introducing multifactor authentication
Multifactor authentication (MFA) is currently the single most important security measure to ensure that the right person is logging in with their KTH account. In this way, we reduce the risk of identity theft, strangers logging in with the account and abusing it. It is about protecting KTH's IT systems from various forms of attacks or intrusions by preventing, detecting and managing threats that target networks, devices, programs and data.
