So my company decided to migrate office suite and email etc to Microsoft365. Whatever. But for 2FA login they decided to disable the option to choose “any authenticator” and force Microsoft Authenticator on the (private) phones of both employees and volunteers. Is there any valid reason why they would do this, like it’s demonstrably safer? Or is this a battle I can pick to shield myself a little from MS?

  • Rikj000
    link
    fedilink
    English
    195 months ago

    You can use Aegis and/or Yubico Authenticator instead, that’s what I do.

    • Fleppensteyn
      link
      fedilink
      115 months ago

      In my company at least, Aegis works for the first few logins, but it will keep nagging you have to switch to Microsoft’s authenticator and you’re locked out after a while.

        • Fleppensteyn
          link
          fedilink
          25 months ago

          Apparently MS uses a “proprietary PhoneFactor 2FA solution” that Aegis doesn’t support.

      • miss phant
        link
        fedilink
        15 months ago

        My experience with it privately as well, and for Fido2 it says my system/browser is unsupported (Linux/Firefox) when it works on literally every other site.

    • @XEAL@lemm.ee
      link
      fedilink
      65 months ago

      Unless it turns out that only the supid MS one works on that specific company.