this post was submitted on 05 Jan 2024
733 points (98.4% liked)

Memes

45727 readers
172 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] LemmyIsFantastic 5 points 10 months ago (2 children)

This is a configuration item. Nothing to do with the app. It's a choice your company has made.

[–] [email protected] 2 points 10 months ago (1 children)

My admins said they see a big red "insecure" banner if they allow other 2FA apps.

[–] LemmyIsFantastic -1 points 10 months ago

I mean, unless your service lets you pick individually that usually means turning on SMS. That's probably why they have a general policy, it's a pain in the ass to manage multiples.

[–] qaz 2 points 10 months ago (1 children)

Interesting, do you happen to know which configuration item causes this?

[–] LemmyIsFantastic 2 points 10 months ago (1 children)

The one that forces you only to use 'passwordless' logins or forces that MFA challenge. Your admins had a choice on what they allow.

[–] [email protected] 1 points 10 months ago (1 children)

It seems something changed on MS end though because I have control of what MFA i use on our corporate acxount, which was setup with Yubikey, until about a month ago when this Use Your Outlook Mobile started on it's own

[–] LemmyIsFantastic -1 points 10 months ago (1 children)

🤷‍♂️ maybe it's a bug or change

[–] [email protected] 1 points 10 months ago* (last edited 10 months ago) (1 children)

Whatever it is, somebody at Microsoft made a mistake; it should not prompt you for Outlook Mobile Auth code when that is the actual app you are trying to sign in to, and have no way of retrieving that code. it should have review MS app and if it is Outlook Mobile then move to the next MFA option in your security list.

[–] LemmyIsFantastic -2 points 10 months ago (1 children)

I mean the error should be better, but there isn't another method. They are turned off.

[–] [email protected] 1 points 10 months ago

In this meme yeah, in my account I get the "try another way" link to let me go back to Yubikey auth option. But it shouldn't default to Outlook auth if your are trying to sign in to Outlook, that is just lack of forethought