abadideaSorry Microsoft but I don’t buy that the authenticator app CANNOT work without app use diagnostics from every single user
Brian Hawthorne@0xabad1dea All the authentication apps appear to be using the same standard, so just use the Google Authenticator or 1Password. I use the latter and it works for Azure, Google, and everything else K have tried.
yProd@bhawthorne @0xabad1dea Microsofts app does more, unfortunately: They do TOTP, but also custom stuff for Microsoft services (like “enter this two-digit number in your Authenticator app to sign in”).
aismallard (relocated!)
Apicultor 🐝@apicultor Well, that depends on your situation. For organization-managed accounts, it may very well be non-optional.
@yProd If the organization is mandating their own devices, they can insist on whatever the hell they want.
If the organization permits BYOD and tries to enforce this shit on personal devices, at least in the EU that would be an instant GDPR own-goal.
LisPi@bhawthorne @0xabad1dea That's largely because they do.
https://www.rfc-editor.org/rfc/rfc6238
Sven Shipton@lispi314 @bhawthorne @0xabad1dea as far as I'm aware, unlike TOTP itself, the otpauth:// URI isn't standardised. It's more just convention (I think from Google Authenticator?)
@svn @bhawthorne @0xabad1dea I think so, yes.
That's why most places offering TOTP support also include a way to just see the seed directly so that manual entry can be used.
JamesGecko@bhawthorne @0xabad1dea The Microsoft app also supports their bespoke passwordless auth system; that's probably the part they'd specifically want diagnostics on. Bad look to *require* them, though.
Wilfried Klaebe
Kevin Collas-Arundell@bhawthorne
Microsoft have their shit push based system that they tie a lot of functionality to. :|
Microsoft have their shit push based system that they tie a lot of functionality to. :|
@kca Is that for their consumer version? At work, we use Azure authentication and the full suite of Microsoft 365 services, and I’ve never had a problem just using 1Password.
@bhawthorne it's the one forced out for corporate azure ad/365 now.
@kca I admit I’m not an admin at work, so maybe I am missing some nuance, but we are using azure ad/365 at work (state government) and I’ve had no problem using 1Password for authentication.