Feature Request: Native 2FA/MFA Support for Windows Logon with OTP Code

Question

Dear Microsoft Team,

I would like to submit a feature request regarding the Windows Logon experience.

Currently, Windows offers several sign-in options (such as PIN, biometric, and password login), but it lacks a native, built-in second-factor authentication (2FA/MFA) step using OTP codes (e.g., via Microsoft Authenticator).

For many users like myself, security is a top priority—especially in both enterprise and personal environments. I strongly believe that having an optional 2FA/MFA prompt after entering the Windows password (for example, using an OTP from the Microsoft Authenticator app) would significantly enhance account and device protection.

There are third-party solutions on the market, but native integration would offer a smoother, more secure, and more trusted experience. In my opinion, this should be as essential as BitLocker or Secure Boot—part of the core identity protection tools Windows offers.

Thank you for considering this request. I genuinely feel this addition would make Windows much more secure and aligned with today’s security standards.

Best regards,
Adrian

Answer 1

I have just sent them now this.. the second time ...

Our link discussion this one...

https://answers.microsoft.com/en-us/windows/forum/windows_11-security/feature-request-native-2famfa-support-for-windows/1a632e87-c5db-402a-8590-1a583e00d8f7?messageId=063714b8-ac90-495d-94b8-020d181f8b13

Please add native support for two-factor authentication at Windows login using OTP codes from the Microsoft Authenticator app. Suggested flow: Step 1: User logs in with password/PIN/biometrics/face id Step 2: OTP code : Then confirms login with a one-time code from Microsoft Authenticator This would greatly enhance device-level security by requiring a second factor from a separate device — even if someone knows the password, they can’t access the Authenticator app without biometric verification. Implementing this would align Windows with modern security standards and show strong commitment to user privacy and data protection. Thank you!

They should follow your discusion.. and other discusion as users bring good improvement ideea into WIndows security...

Answer 2

Hi everyone, and thank you for your responses!

At first, I thought this was the right place to submit feature requests, but as you mentioned, using Windows + F I've now submitted both the request and the test case directly to Microsoft. I plan to send it regularly, because I truly believe this feature should be a top priority in the next version of Windows: 2FA/MFA using OTP codes from Microsoft Authenticator at system login.

This is a crucial layer of security. Even if someone were to steal your phone, they wouldn't be able to access the Authenticator app without first unlocking it — typically via fingerprint or biometric authentication. So in practice, the OTP codes remain protected even in risky situations. Security must come first.

Here's the idea in brief:

Steps to log in to Windows:

1. Choose your standard login method: PIN / Password / Face ID / Biometrics
   +
2. Enter a One-Time Password (OTP) from Microsoft Authenticator

This simple addition could mark a new era for Windows — one that clearly shows users their privacy and security are truly valued.

I encourage everyone who agrees to submit the same feature request.

The more voices Microsoft hears, the higher the chance this becomes a reality.

Answer 3

Don't waste your time on this, Microsoft already considers TOTP almost as dead as the passwords it was intended to replace, since like most other forms of current MFA, it's too easily phished from the user by modern attack techniques including the kits mentioned in the following article.

Software for sale is fueling a torrent of phishing attacks that bypass MFA - Ars Technica

As mentioned in the article, the FIDO2 authentication methods including the passkeys Microsoft is currently pushing for Windows 11 are the only currently available method that doesn't add a direct cost for consumer users.

Since Microsoft, Google, Apple and others are working together to make FIDO2 viable via passkeys, they're not going to waste time going backwards to a legacy technique that's already proven to be easily phished even when the authenticator is used to generate the code.

Rob

Answer 4

Although this site is called Microsoft Community, those of us who volunteer to assist in this forum are not employees of Microsoft and we have no direct lines of communication with them or their customer service team.

You can send suggestions and provide feedback directly to Microsoft through the Microsoft Feedback Program. Most folks do not take the time or effort to provide feedback but by doing so, you can make an impact on the products and features you use which or would like to see improved and you can explain any problems you have encountered with Microsoft products. Your feedback is forwarded to the relevant product teams so they can review it and respond back.

• Send feedback to Microsoft with the Feedback Hub app
• How to give useful feedback about Windows through Feedback Hub
• Learn: Where and how to provide feedback - How Microsoft uses feedback

Answer 5

Hi there, Adrian! This is Marc. Thank you for reaching out to the community.

Thanks for sharing such a well-thought-out suggestion.

Windows currently doesn’t offer built-in 2FA or OTP support at the logon screen for most users, unless you're using enterprise-level tools like Windows Hello for Business. Adding native support for OTP-based 2FA (e.g., via Microsoft Authenticator) would absolutely strengthen Windows' security, especially for personal and small business environments that don't have complex infrastructure.

While third-party solutions exist, native integration would be more secure, seamless, and accessible much like BitLocker and Secure Boot are today. I recommend submitting this via the Feedback Hub (Windows + F) under Security & Privacy > Sign-in and authentication to ensure the Windows team sees it. With enough user feedback, features like this can gain real traction.

Thanks again for your thoughtful input.

Best regards,