HKUST ITSO AI Chatbot

Important reminder

Please do not disclose personal data such as your HKUST account number, staff/student ID or name in the chatbot. Information provided will be retained to enhance system performance.

By using the HKUST ITSO Chat service, you confirm that you have read, understood, and agreed to the Disclaimer

Log in to access additional information for your user group in addition to the publicly accessible content.

Send Icon
FAQ on using Microsoft Authenticator
Q1. What is a Temporary Access Pass (TAP) code?

A Temporary Access Pass (TAP) is a time-limited passcode for single use within 2 hours.  It makes recovery easier when a user loses or forgets a strong authentication method.

Q2. How do I get a Temporary Access Pass (TAP) code?

Please go website https://myaccount.ust.hk/msmfagettap

In case, you cannot login the application using MS Authenticator App, e.g, device lost.   You could select "Other ways to sign in" and "Use my password" to login with your password as shown below:

 

Select "Other ways to sign in"

 

Select "Use my password"

 

Q3. How do I use a Temporary Access Pass (TAP) code?

After you have got the TAP.  You could login with your TAP.

 

Enter your TAP to login

 

Or you may select "Other ways to sign in" and "Use Temporary Access Pass" if the system does not prompt for the TAP.

Select "Other ways to sign in"

 

Select "Use Temporary Access Pass"
Q4. How to logon if I forgot to bring my mobile or loss of it?

If you forgot to bring your mobile or lose of it, you can user other methods such as your alternate phone or office phone if you have registered before. If there is no available method, please go to https://myaccount.ust.hk/msmfagettap to get a Temporary Access Pass (TAP) code for manage your MFA device.
After you got a new mobile, you can sign in to https://mysignins.microsoft.com/security-info and then change to other sign in methods. Remove the sign-in method with your loss phone and add again. Update the "Default sign-in method: Microsoft Authenticator - notification" with your new mobile. In Microsoft Authenticator app (your new mobile), choose Set up phone sign-in from the drop-down menu for the account registered.

Q5. How to add sign in methods?

Please read Add sign-in methods (via Security Info).

Q6. How to remove sign in methods?

Please sign in to https://mysignins.microsoft.com/security-info

On the Security info page, select the unwanted sign-in method and click "Delete" to remove the device.

The Security info page with the Delete button highlighted next to the sign-in method.

Q7. Where could I download the Microsoft Authenticator?

Install Microsoft Authenticator from the supported mobile platforms below:

Q8. What is the alternative solution if my mobile does not support Microsoft Authenticator?

If your mobile device does not support Microsoft Authenticator, please consider the alternative solution below: 

  1. Authenticator Apps: Use other authenticator apps like DUO Mobile, Google Authenticator, etc...

-----------------------------------------------------

Here's how you can set up 2FA with a third-party authenticator app:

  1. Install the Authenticator App: First, download and install your preferred authenticator app (DUO Mobile, Google Authenticator, etc.) on your smartphone.
  2. Set Up the Authenticator App: During the setup process, please select "I want to use a different authenticator app" as the method.
  3. Scan the QR Code: This will add your Microsoft account to the authenticator app.
  4. Enter the Code: After scanning the QR code, the app will generate a one-time code. Enter this code into the provided field on the Microsoft website to verify the connection between your account and the authenticator app.
Q9. Cannot receive Authenticator's notification?

After you choose your account to sign in but there is no notification with your Authenticator app, please invoke Microsoft Authenticator from your mobile and sweep down to check for notifications. You can then approve the sign in request.

Q10 Can I use Microsoft Authenticator with Multiple Accounts?

Yes. Just add your accounts if necessary. Please note that only Microsoft Authenticator for iPhone supports passwordless with multiple accounts. With Microsoft Authenticator for Android, you can just setup one account for phone sign-in (passwordless) while you can approve other account's using the Authenticator app.

Q11. What is Microsoft Authenticator lock (app lock)?

App Lock helps keep your one-time verification codes, app information, and app settings more secure.

When App Lock is enabled, you'll be asked to authenticate using your device PIN or biometric every time you open Authenticator:

Q12. How can I disable app lock on the Microsoft Authenticator?

To disable app lock on the Microsoft Authenticator, follow these steps:

  • Open the Microsoft Authenticator app on your device.
  • Tap on the three-dot menu (or the gear icon) in the upper right corner.
  • Select Settings from the dropdown menu.
  • Look for the App Lock option.
  • Toggle the App Lock switch to Off.

 

This will disable the app lock feature, allowing you to access the app without the additional security prompt.

Q13. How should I handle 2FA prompts for Duo when I access the VPN?

You can follow the VPN webpage and update the URL from "https://remote.ust.hk/" to "https://remote.ust.hk/mfa/".

Support

General Enquiries cchelp@ust.hk
Suggestions & Complaints cclisten@ust.hk
Serviceline +852-2358-6200