The app supports fingerprint-based approvals on both iPhone and Android. Microsoft Band will be supported in future releases, Mary Jo Foley was told.įinger prints instead of passcodes. You can use an Apple Watch or Samsung Gear device to approve MFA challenges. (And in most cases, you won’t even need to open the app to complete the approval.) You only need to click the ‘approve’ button in the notification to complete your login. The app experience is incredibly simple while maintaining the highest level of security.īest in breed MFA experience through one-click push notifications. Here’s what Simons says the new app will provide: “With the new Microsoft Authenticator, we’ve combined the best of both into a single app that supports enterprise and consumer scenarios.” “As many of you know, we’ve had separate authenticator apps for Microsoft account and Azure AD for quite a while – the Azure Authenticator for enterprise customers and the Microsoft account app for consumers,” Microsoft’s Alex Simons explains. If this thing worked with any online account-it’s not clear from the announcement-it would be the only authenticator app anyone would need. Microsoft is apparently trying to bridge these solutions now with a single app that supports Android, iPhone and Windows 10 Mobile (and not older Windows Phone OS versions) … and that works with Microsoft accounts and corporate Azure AD accounts. And only need to protect a Microsoft account. But it works brilliantly: When you get a second factor request on your PC or elsewhere, the Microsoft Account app on your Android phone displays a notification so you can approve it by just tapping the screen. Oh, it get weirder: The app is called Microsoft Account. Today, for example, the very best authenticator app is from Microsoft … but it only works on Android, and it only works with Microsoft Accounts(!). So when you get a second factor request during a sign-in, you have to wake up your phone, find the app, look at and memorize the code, and then type it in (on your PC, if that’s what you’re using, or wherever the request is coming from). Standard authenticator apps, like Microsoft Authenticator on Windows phone, Google Authenticator on Android and iOS, or LastPass Authenticator, just sit there and generate codes for each account. The problem is, these apps sometimes work a bit differently, or only on certain platforms, or only with certain account types. The theory here is that, yes, hackers could potentially steal your password, but they won’t also have your smart phone-or other second factor, whatever that may be-so they won’t be able to seize control of your account.”Īs noted, the most typical way to use MFA is with a smartphone-based authenticator app of some kind. But your smart phone is something you possess, something that will typically be with you at all times (and will itself be protected by at least a four-digit PIN of its own). And if hackers somehow gain control of your account(s), they will stymied by not having access to one or more of the authentication factors needed to access the contained information.Īs I noted in Tip: Protect Your Online Accounts with Two-Factor Authentication, “the inclusion of your smart phone to the mix is important. I strongly recommend that you use MFA on all of your online accounts that support this method of authentication-most now do-because it’s much more secure than just using a password. The second factor is usually a code generated by a smart phone app, or sent via text message to your smart phone. For those consumer-oriented online accounts, the first factor is always your password. Whatever the name, the idea here is as simple as it is effective: MFA improves the security of your online accounts by adding a second “factor” to the authentication process used to prove that you are you. Like other similar solutions-I’ve been using LastPass Authenticator recently, and Google has been working to simplify this process as well-the new Microsoft Authenticator app will let you use multi-factor authentication(MFA), or what’s sometimes called two-factor authenticationor two-step authentication in the consumer world, with your online accounts. But it appears that this new “one app” approach won’t work with non-Microsoft accounts (Google, Dropbox, etc.) unless I’m missing something. This new app will combine the functionality from two previous authenticator apps and will work with both consumer Microsoft accounts and business-focused Azure AD accounts.Ĭonfused? Well, that’s why Microsoft is consolidating its previously-separate authenticator apps into a single app experience on each mobile platform. Microsoft announced that it will ship new versions of its Microsoft Authenticator app to “all mobile app stores-meaning for Android, iPhone, and Windows 10 Mobile-on August 15. UPDATE: I received some good news from Microsoft.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |