MFA is required for Microsoft applications including Outlook when on-campus. OIT recommends that the Microsoft desktop or mobile device applications are installed so that you only need to authenticate about every 90 days. If you use a web browser for email, for example, you will be prompted for authentication with each new browser session.
How it works
MFA for Microsoft 365 relies on a token that is placed on your device when you access these applications while connected to the network. This means that when you connect to your email via Outlook or your OneDrive (for example) while on campus, or you connect from home using the VPN or virtual remote desktop and applications, a token that is good for up to 90 days will be placed. However, if you access Microsoft 365 browser-based applications exclusively, you will be challenged each time you connect remotely.
Important: Authentication tokens are good for up to 90 days, but there are several factors that may cause the need to re-authenticate earlier than 90 days, even when using the Outlook client. These include changing your network password or an event that damages the token.