@Erased_Citizen I regard it as Microsoft's equivalent of ed(1) in its error handling.

It's sole failure modes are either sit and wait for ever or timeout with no clue given as to what went wrong. And in several places Microsoft's applications won't tell the user that it's even waiting for Authenticator, but will just show a progress bar or a spinning mouse pointer.

I count my lucky stars that it's someone else's job at my company to manage it.

#MicrosoftAuthenticator

@Erased_Citizen Easily, if my experience is any guide.

Just requiring Microsoft Authenticator for two logins on two different machines simultaneously is enough to make it fail both of them. And if it's something like RDP where it automatically re-tries 5 times after a network outage, and you had about 6 sessions going, it's a long road back to where it will authenticate again.

#MicrosoftAuthenticator

#Microsoft forcing you to have a secondary e-mail for recovery. Why!? Want to add a security key? You can't use #Linux. How about paswordless sign-in... #MicrosoftAuthenticator required.

😞 😠

I put some words on page so other people can read what I was thinking: "Microsoft back down on plans to enforce Microsoft Authenticator number matching" https://technicaladept.com/index.php/2023/02/17/microsoft-back-down-on-plans-to-enforce-microsoft-authenticator-number-matching/ #Microsoft #Authenticator #MicrosoftAuthenticator #security #mfa

Bye bye #MicrosoftAuthenticator, it was nice knowing you while you were useful…

安全性不相容，Microsoft Authenticator 不再支援 Apple Watch
https://adersaytech.com/ms-news/microsoft-authenticator-watchos.html
---
#watchOS #MicrosoftAuthenticator #新聞 #news #微軟新聞 #technews #MicrosoftNews #apple新聞 #蘋果新聞 #applenews #科技新聞

Since a lot of eyes are on #LastPass and #PasswordManagers in general right now, hopefully, we can bring some good out of it and share best practices/tips for authentication, for everyone to be more secure.

1. Use a password manager. Yes, they can be breached, but they are 1000x better than memory or similar passwords everywhere. The ones I see recommended usually are #1Password and #Bitwarden (which I personally support and suggest, and it's #FOSS)
2. Combine the step above and all logins where possible with #MFA (usually #2FA). I saw #Authy and #GoogleAuthenticator recommended multiple times. Personally, I have only used #MicrosoftAuthenticator and #Aegis (Android only), both of which I suggest (Aegis is more technically involved, as there is no cloud to backup to, you're in charge of managing your backups).
3. I also think an email address used only as a recovery option for your main one/password manager is a good idea. Have a password as strong as the one on your password manager. Use 2FA on it and don't use it for anything else.
4. If you have the money and are open to making your life a tad bit more difficult in exchange for more protection, you can opt for physical MFA keys, such as #YubiKey.

I'm by no means an expert in #CyberSecurity or #InfoSec, but I do believe I do some things right, and I am optimistic that at least some will find posts like this at least somewhat useful. Please let me know if I'm missing something or if I am flat out wrong with some of the things above.

I now see articles from December 12 announcing Microsoft Authenticator is leaving watchOS. Sad. I use my watch many times daily for authenticating so I don’t have to grab my phone. Disappointing. Apple and Microsoft need to make this work. #MicrosoftAuthenticator #watchos

@admin You can't register a FIDO key unless you have a working TOTP device (#Googleauthenticator, #MicrosoftAuthenticator #FreeOTP+ ..) registered

Please activate 2 factor authentication #2FA. You can either use an app like #GoogleAuthenticator or #MicrosoftAuthenticator or a hardware dongle like the #YubiKey or the #NitroKey. Best probably is to use the hardware key and have the app as backup. Thanks for helping to make this Mastodon instance a safer place.

With the ever increasing attacks on users, moving to #multifactorauthentication is a must in order to reduce the attack surface of just relying on a password to secure access to resources. Implementing #MFA that is enforced all the time relies on also having a good user experience, which gave rise to mobile authenticator apps since many users always have their phones with them. However it also gave rise to #mfabombing and griefing to get those users to approve. With the recent GA of #microsoftauthenticator #azuread orgs can enable number match and context for the push notification to further improve the #security of the users by avoiding the blind approval of a push notification.

🔥 See the post on the AzureAD blog here and go enable these settings for your organization https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/advanced-microsoft-authenticator-security-features-are-now/ba-p/2365673 #microsoft #office365 #o365 #cloudsecurity