Coffeehouse Thread

16 posts

Two factor auth for Microsoft Account

Back to Forum: Coffeehouse
  • User profile image
    blowdart

    http://blogs.technet.com/b/microsoft_blog/archive/2013/04/17/microsoft-account-gets-more-secure.aspx

    Over the next couple days we will roll out a major upgrade to Microsoft account, including optional two-step verification to help keep your account more secure.

    This release enables optional two-step verification for your entire Microsoft account. Two-step verification is when we ask you for two pieces of information anytime you access your account — for example, your password plus a code sent to a phone or email on file as security info.

    More than a year ago, we began bringing two-step verification for certain critical activities, like editing credit cards and subscriptions at commerce.microsoft.com and xbox.com, or accessing files on another one of your computers through SkyDrive.com. For these scenarios, two-step verification is required 100 percent of the time for everyone, given the sensitive nature of these tasks.

    With this release you can choose to protect your entire account with two-step verification, regardless of what service (or device) you are using with your Microsoft account. It's your choice whether you want to enable this, but for those of you that are looking for ways to add additional security to your account, we've worked hard to make set-up really easy.

     

  • User profile image
    Ian2

    Sounds good, am I correct in thinking that the default is off?

  • User profile image
    figuerres

    @blowdart:

    will there be an option for something like what RSA does with the keyfob and the iPhone app ??

     

  • User profile image
    blowdart

    , Ian2 wrote

    Sounds good, am I correct in thinking that the default is off?

    Yes

  • User profile image
    blowdart

    , figuerres wrote

    @blowdart:

    will there be an option for something like what RSA does with the keyfob and the iPhone app ??

    Not that I'm aware of no. But the phone app uses the same RFC specified time based codes that google, dropbox, lastpass et al use. SecureIDs have a licensing cost (from what I can remember).

  • User profile image
    figuerres

    , blowdart wrote

    *snip*

    Not that I'm aware of no. But the phone app uses the same RFC specified time based codes that google, dropbox, lastpass et al use. SecureIDs have a licensing cost (from what I can remember).

    sorry but I could have answered part of my question, in the post you liked it does say there are winphone and iphone apps for this....   fob was not mentioned as far as I saw.

  • User profile image
    blowdart

    , figuerres wrote

    *snip*

    sorry but I could have answered part of my question, in the post you liked it does say there are winphone and iphone apps for this....   fob was not mentioned as far as I saw.

    Fobs tend to run custom generation code. The phone apps use an RFC specified and standardised algorithm.

    So no, it's not mentioned. I have no visibility into that team, but given costs for fobs I'd consider it unlikely to be honest.

  • User profile image
    ScanIAm

    On more than one occasion, passport/live/Microsoft account//etc. has decided to function erratically and lock me out.  The solution of requesting password resets, etc. don't work either, until a day or two later when suddenly, they do.

    Imma let you finish with this super duper update, but it's not cool if I get locked out, again.  Watching my phone drop all my paid for music and being unable to even report the issue due to an inability to get past the password reset screens is a bit anti-consumer...

     

  • User profile image
    blowdart

    I just enabled it. The only hiccup was the messaging centre in WP8. I had to change my WP8 account settings password to use a one time password. However skype on wp8 correctly prompted for the auth code (no surprise though, it's wrapping an oauth web page)

  • User profile image
    GoddersUK

    Any idea if/when it will support linked accounts?

  • User profile image
    blowdart

    , GoddersUK wrote

    Any idea if/when it will support linked accounts?

    That caught me too. But then it's an old live ID I had linked, and I never used it, so for me, no big loss.

    Skype needs a way to "Never prompt me again"

  • User profile image
    Craig_​Matthews

    Hopefully this goes better than Google's two factor authentication. Google implemented this but, for some reason, didn't feel it necessary to make all of their mobile apps *actually work with it*. I had to stop using Google's two factor auth because I wanted to actually use their mobile apps.

  • User profile image
    GoddersUK

    @Craig_Matthews: You can get an app-specific password from Google to overcome that...

  • User profile image
    blowdart

    , GoddersUK wrote

    @Craig_Matthews: You can get an app-specific password from Google to overcome that...

    And MS Accounts offers the same facility.

  • User profile image
    ScanIAm

    So far, no problems, so kudos.

  • User profile image
    codeDebate

    +1

Comments closed

Comments have been closed since this content was published more than 30 days ago, but if you'd like to continue the conversation, please create a new thread in our Forums, or Contact Us and let us know.