Oct 04 2018
- last edited on
Feb 01 2023
We have a couple people who don't have Smart Phones and need to use MFA. We don't want to use a simple Text Message if we can and prefer to use something a bit more secure. I found there is an Authenticator App for Windows 10 but it doesn't seem to work with O365 accounts.
Are there any sort of keyfob dongle or USB dongle thing that work with Office 365 that we can get for people who don't have smartphones? I've used the kind where the number on the fob changes every minute just like an authenticator app would but that was many years ago.
If anyone knows something we can use to make this work, let me know.
Oct 04 2018 11:20 AM
Support for hardware tokens, FIDO and other methods is coming soon, as announced in this Ignite session: https://www.youtube.com/watch?v=Au7spkRcDFU
Oct 04 2018 11:23 AM
I forgot to mention that we have a local AD system that syncs up to Azure AD. I don't know if that changes anything or not. We are using Exchange, Teams, etc in Office 365 have AD syncing.
Oct 04 2018 12:04 PM
I use WinAuth.exe on desktop/Laptop to create MFA for people without SmartPhone.
Works as a charm .
Oct 04 2018 12:44 PM
Nov 28 2019 07:25 PM
Hi @Vasil Michev , I have a customer with a similar situation wherein they would like to use UB keys , but they dont have an option to leverage that option at the time of configuration, wherein it still prompts the user to use the authenticator app .
Nov 28 2019 09:09 PM
@Rahul_SinghWe use the SafeID/Mini tokens from here:
They work great for those that don't have, or don't want to use, a smartphone.
Apr 27 2023 05:05 AM
Sep 14 2023 02:33 PM - edited Sep 14 2023 02:38 PM
Come on Microsoft, my client is blind and uses voice for everything. Please why cram authenticators down everyone's throat? I understand the importance of two factor.
PLEASE ALLOW SKIPPING TO A PHONE CALL, TEXT, ALT EMAIL or SECRET PASSWORD like app password to allow passage through the Monty Python MFA Troll Bridge.
The poor guy CANNOT SEE the Q-Code, much less enter the numbers if sent to an app. He can HEAR the codes if we can set it up for a phone call, or hear his alternate email when the PC or phone reads it to him. I can turn off MFA in Azure, but rather not.