Microsoft Authenticator security

Eduardo R 0 Reputation points
2023-01-25T10:31:56.2666667+00:00

It seems to me that the security of Microsoft Authenticator on an Android device only resides in the strenght of the pin or password to unlock the device. If someone gets access to an unlocked device, he can register a new fingerprint and access the app without knowing the password to unlock the app (which is, by the way, the same to unlock the device). In my opinion this is a serious security flaw, especially since you may put passwords and 2FA codes in the same basket. In contrast, Bitwarden may be unlocked using either an application password, pin or a registered fingerprint. Nevertheless if a new fingerprint is registered, Bitwarden asks for the password.

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
7,944 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Kannan N 16 Reputation points
    2023-01-25T11:06:18.85+00:00

    Hi Eduardo R

    I got your Question. But see i got your Mobil It's Unlocked. But when i try to Add my fingerprint Again i need the Phone pass code.

    In case you know the Phone main Pass code that time you can.

    My suggestion Enable app lock. Use different password and disable app lock with fingerprints. Only use Pin to open the app. In the app lock setting you can do this.

    WhatsApp Image 2023-01-25 at 4.34.56 PM

    1 person found this answer helpful.
    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.