this post was submitted on 05 Jan 2024
733 points (98.4% liked)

Memes

45901 readers
1459 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] LemmyIsFantastic 5 points 11 months ago (2 children)

This is a configuration item. Nothing to do with the app. It's a choice your company has made.

[–] [email protected] 2 points 11 months ago (1 children)

My admins said they see a big red "insecure" banner if they allow other 2FA apps.

[–] LemmyIsFantastic -1 points 11 months ago

I mean, unless your service lets you pick individually that usually means turning on SMS. That's probably why they have a general policy, it's a pain in the ass to manage multiples.

[–] qaz 2 points 11 months ago (1 children)

Interesting, do you happen to know which configuration item causes this?

[–] LemmyIsFantastic 2 points 11 months ago (1 children)

The one that forces you only to use 'passwordless' logins or forces that MFA challenge. Your admins had a choice on what they allow.

[–] [email protected] 1 points 11 months ago (1 children)

It seems something changed on MS end though because I have control of what MFA i use on our corporate acxount, which was setup with Yubikey, until about a month ago when this Use Your Outlook Mobile started on it's own

[–] LemmyIsFantastic -1 points 11 months ago (1 children)

🤷‍♂️ maybe it's a bug or change

[–] [email protected] 1 points 11 months ago* (last edited 11 months ago) (1 children)

Whatever it is, somebody at Microsoft made a mistake; it should not prompt you for Outlook Mobile Auth code when that is the actual app you are trying to sign in to, and have no way of retrieving that code. it should have review MS app and if it is Outlook Mobile then move to the next MFA option in your security list.

[–] LemmyIsFantastic -2 points 11 months ago (1 children)

I mean the error should be better, but there isn't another method. They are turned off.

[–] [email protected] 1 points 11 months ago

In this meme yeah, in my account I get the "try another way" link to let me go back to Yubikey auth option. But it shouldn't default to Outlook auth if your are trying to sign in to Outlook, that is just lack of forethought