What is Multi-Factor Authentication?

Multi-factor authentication, also known as MFA, is a security process that requires users to provide two different forms of identification before gaining access to an account or system. Typically, this involves entering a password (something the user knows) along with a unique code sent to their mobile phone or generated by an authentication app (something the user has). By requiring both elements for authentication, two-factor authentication enhances security by adding an extra layer of protection against unauthorised access, even if a password is compromised.

Why use Multi-Factor Authentication?

Multi-factor authentication is becoming crucial, especially when concerning medical information. In addition to your email address and password, setting up a second form of authentication, such as an authentication app on your mobile phone, is paramount. This additional layer of security is specifically designed to prevent unauthorised individuals from accessing your account, even if they have knowledge of your password. In the context of medical information, where patient confidentiality is paramount, implementing multi-factor authentication helps safeguard sensitive data, comply with data protection regulations, and maintain the trust of patients. By requiring multiple forms of verification, including something you know (password) and something you have (authentication app), the security of patient information is significantly enhanced, reducing the risk of data breaches and ensuring the integrity of healthcare information.

Multi-Factor Authentication in Engage Consult

From 11th April 2024, Multi-factor authentication will be mandated for all of our Engage Consult customers in Scotland. This will become available for all other customers at a later date. After this date, when attempting to log into your Engage Consult account, you will see the below screen:

You can scan this code in any authenticator app, however for your NHS mail account, you will already be required to use the Microsoft Authenticator App. If this is not installed on your phone, you can download this at the links below:



When installed, open the app and press the "+" button in the top-right corner, then click "Other account". This will ask you to scan a QR code. Please scan the QR code presented by the Engage Client.

A pop-up box will appear on your Microsoft Authenticator app, enter the unique number and press submit.

You will then be asked to use this code when logging in, in the future.

  • Implementing MFA can reduce the risk of unauthorised access by up to 99.9%, as reported by Microsoft
  • According to a report by Verizon, 80% of hacking-related breaches are due to weak or stolen passwords.