Set up Microsoft Authenticator for MFA

﻿
Table of contents
Introduction
Download the Microsoft Authenticator app
Configure Microsoft Authenticator
Apple iPhone
On your computer
On your phone
Google Android (coming soon)
Enable phone sign-in
Overview
Configuration
Conclusion
IntroductionWhen following the ﻿ ⁠⁠Set up Multi Factor Authentication (MFA) on your account⁠ documentation, you may have been prompted to download and set up the Microsoft Authenticator app. This is an app (available for free in your app store) which helps make using Multi Factor Authentication (MFA) easier and less intrusive on your day.
﻿
Add a caption...
Download the Microsoft Authenticator appSearch your phone's app store for Microsoft Authenticator.
Verify "Microsoft Corporation" is the developer of the app.
Click here:  https://www.microsoft.com/en-us/security/mobile-authenticator-app  
Configure Microsoft AuthenticatorChoose your device platform
Apple iPhoneOn your computerOpen a web browser to:  https://mysignins.microsoft.com/security-info . Login, if necessary.
Click Add sign-in method.
Choose Authenticator app.
Follow the instructions on the screen until the QR code is presented.
On your phoneOpen the Microsoft Authenticator app.
Tap the "+" in the top-right corner.
Tap Work or school account.
Scan the QR code on your computer screen.
After scanning the QR code, a test authentication will occur. Once the test authentication is successful, you are finished.
Google Android (coming soon)Coming soon!
Enable phone sign-inOverviewPhone sign-in is an optional step you can take, which is still considered MFA but removes the requirement of typing in your password. Phone sign-in manages the MFA flow all on your mobile device, thus no information (e.g., your password) is sent to the cloud, thus it cannot be compromised. Instead, the Microsoft Authenticator app creates a key that is sent for authentication and is secured by your mobile device PIN and biometric lock (fingerprint or face ID). This is often referred to as "passwordless security."
ConfigurationOpen the Microsoft Authenticator app on your mobile device.
Select the account on which you'd like to enable Phone sign-in.
Tap Enable phone sign-in.
Ensure your device is registered and you have a passcode/biometric lock enabled on your phone.
Complete the setup by authenticating with MFA.
ConclusionAt your next authentication, you will not be prompted for a password but instead, the login screen will prompt you to enter a 2-digit code into your Microsoft Authenticator app.
On your Microsoft Authenticator app, you will see the Name of the application you are attempting to access as well as the Location the access request is coming from. Both of these pieces of information can be used to verify whether it is a legitimate access request.
﻿
This sketch cannot currently be displayed in exports
﻿
This sketch cannot currently be displayed in exports
If needed, click Use your password instead to authenticate with normal MFA.
﻿