Enabling the Azure Authenticator App for 2FA

I’ve enabled two factor authentication (“2FA”) where-ever I have the option, but long disliked the slow login process waiting for a one-time PIN to wind its way from Azure through EOP and to my on-prem Exchange. I have a convoluted collection of accounts & services through Microsoft so I need to use in-Private browsing to successfully sign in – and hence there’s no point clicking “I sign in frequently on this device, don’t ask me for a code”.

I tonight stumbled across the relatively new “Azure Authenticator” app for my iPhone & decided it was for me.

Unfortunately all of the how-to’s on the web referenced the old Azure portal and a setup process that’s no longer relevant.

I eventually found how to enable the Authenticator & re-traced my steps to capture it. I hope this helps you.

  1. Sign in to the Azure Portal:

    1-SignInToAzure

  2. Yes, please send me one of your blasted codes. It will be the last time!

    2-SendMeACode

  3. Enter the code:

    3-EnterTheCode

  4. OK, you’re in. Now click on your name in the top right-hand corner and select “Change password” from the popup menu:

    4-Azure

  5. (Note you’re now in a new window back at account.live.com). Ignore the prompt to change your password. Click “Security and Privacy”:

    5-SecurityAndPrivacy

  6. Now select “More Security Settings”:

    6-MoreSecuritySettings

  7. Scroll until you get to “Set up identity verification app”:

    7-SetupIdentityVerificationApp

  8. Select your chosen ecosystem and click Next:

    8-SetupAnIdentityVerificationApp

  9. Ignore the reference to downloading Google’s Authenticator here, click the “+” on the App to add an account, snap the QR code, copy the code from app to here, click Next and you’re done:

    9-HomeAndHosed

  10. Now sign out of Azure, close IE and sign in again to test it:

    1-SignInToAzure

  11. TADA!!

    10-TADA

  12. And for bonus points, you even get an e-mail to confirm the change:

    11-ConfirmationEmail

 

– G.

Leave a Reply

Your email address will not be published.

... and please just confirm for me that you're not a bot first: Time limit is exhausted. Please reload the CAPTCHA.

This site uses Akismet to reduce spam. Learn how your comment data is processed.