Forum Discussion

luvsql's avatar
luvsql
Steel Contributor
Mar 09, 2021

MFA without a Cellphone

This is becoming a bigger issue more and more.  We cannot, as a company, require our Employees to use a personal cellphone to get text codes or install work apps to authenticate our work accounts.  ...
azure
sathiyatam26's avatar
sathiyatam26
Copper Contributor
looking for 3rd party authenticator app, it should not open source
Except MS authenticator because users are not allowing to user mobile phone
Thinker1800's avatar
Thinker1800
Copper Contributor
Jan 04, 2023

sathiyatam26  luvsql 
Has anyone found a solution for this problem? I am an employee and want to access MFA, but I seek to do so without using a personal cell phone.

  • kenturnerturnercom's avatar
    kenturnerturnercom
    Copper Contributor
    Aug 01, 2023
    Yes, I have found a solution. I only use a PC and not a tracking device like a dumb (s.m.a.r.t.) phone. Just recently our Company initiated the Microsoft Authenticator. As if the Text or Phone call wasn't enough (sarcasm). My Company would not allow IT to circumvent certain Users, like myself, to use Outlook and the rest as it was previously.
    Since I use the PC I searched for a viable way to keep my rights and not tie business things to a personal mobile phone.

    IF anyone is interested in this Microsoft Authenticator to PC, then let me know.
    • g_aceik's avatar
      g_aceik
      Copper Contributor
      Aug 15, 2023
      Yes i would be interested, ty? This is a joke, FYi! More proof that these tech giants are trying to force ppl into a digital surveillance state, by forcing ppl to have dumb (s.m.a.r.t.) phone, aka data harvesting/tracking device. I will never conform to this. Pernille-Eskebo - demanding that you allow email authentication.. SMS is already to intrusive! Suggestions anyone how to get around this??
    • it-lett's avatar
      it-lett
      Copper Contributor
      Aug 16, 2023

      kenturnerturnercom 

       

      There are a number of applications available for Linux, Windows, and macOS that will generate otpauth://totp/ keys like Microsoft Authenticator and Google Authenticator are able to.

       

      I have used KeepassXC on all platforms for this feature - just putting the text in the form of the following URL into the "notes" section will make it work (actually only the "secret" part is needed, the same codes are generated no matter what other info is included). I think KeepassXC also has a dedicated database item for TOTP data, but having it in the "notes" section also works with StrongBox on macOS and iOS, which I also have used. I don't know if keepass2android picks up this info for the Android implementation.

       

      (I used ☉ rather than @ because the filters get rid of properly formatted email addresses)

       

      otpauth://totp/Example:alice☉example.com?secret=JBSWqlmfDPEHPK3PXP&issuer=Example

       

      Key Uri Format

      https://github.com/google/google-authenticator/wiki/Key-Uri-Format

       

      https://keepassxc.org/

       

      https://strongboxsafe.com/

       

      https://play.google.com/store/apps/details?id=keepass2android.keepass2android&hl=en_CA&gl=US

       

       

       

       

    • webapt's avatar
      webapt
      Copper Contributor
      Oct 09, 2023
      We are a MAC-based environment, and 80% of users are okay with using their mobile for MFA. But I must find an alternative solution for the 20% who refused to use their mobile device.

Resources