Share via

Authenticator application not receiving Azure MFA code with personal azure account(not work) one time pass code shows 8 digits not 6

Branden Carter 0 Reputation points
2025-09-26T16:59:20.07+00:00

I have paired my phone's authenticator application with my microsoft security sign in options. MFA works for regular Microsoft site, but not for my portal.azure.com. when I select other options other than receiving a notification i am prompted to enter a 6 digit number, but my auth app is only giving me an 8 digit number.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Jose Benjamin Solis Nolasco 8,076 Reputation points Volunteer Moderator
    2025-09-26T18:44:30.1033333+00:00

    @Branden Carter Welcome to Microsoft Q&A

    A Microsoft Account (also called an MSA or personal account) is one you create yourself, for personal use (Outlook.com, Xbox, Skype, etc.). You can use any email address, even Gmail, Yahoo, etc., to create an MSA. And a Work or School Account is an identity managed by an organization, via Azure Active Directory (or Microsoft Entra). Your organization (or tenant admin) creates or assigns the account; policies, MFA, access permissions, etc., are controlled by the org.

    Sometimes the same email address can be used for both types of accounts (if you created an MSA on that email, and separately an Azure AD account / Org assigned account uses the same email). Microsoft will prompt you (“Which account do you want to use?”) in such cases.

    Please refer the documents for better understanding:

    https://support.microsoft.com/en-us/account-billing/what-s-the-difference-between-a-microsoft-account-and-a-work-or-school-account-72f10e1e-cab8-4950-a8da-7c45339575b0

    https://support.microsoft.com/en-gb/office/why-do-i-need-an-account-to-sign-in-to-microsoft-365-or-office-914e6610-2763-47ac-ab36-602a81068235?

    https://support.microsoft.com/en-us/account-billing/about-microsoft-authenticator-9783c865-0308-42fb-a519-8cf666fe0acc

    https://support.microsoft.com/en-au/office/which-account-do-you-want-to-use-2b5bbd7a-7df6-4283-beff-8015e28eb7b9?

    The behavior of Authenticator App like Generates 8 Digits vs 6, and that Implies

    The Microsoft Authenticator app tends to show 8‑digit codes for Microsoft Personal Accounts (MSA). For Work or School Accounts (Azure AD / organizational accounts), Microsoft expects 6‑digit codes when using the Authenticator app (for TOTP / code‑based verification). If the app is giving 8 digits but Azure is asking for 6, that mismatch usually means the account set up in the Authenticator app is tied to a Personal Microsoft Account rather than Azure AD. So, in short: the number of digits in the code can tell you (roughly) which type of account / identity is being used for MFA.

    Microsoft has notification‑based MFA, when you log in, instead of entering a code, you might get a “number matching” or “approve request” prompt in the Authenticator app. Sometimes a random number (like “51”) appears and you must match/respond in the app. That’s a different verification method than TOTP code entry and is usually available for Work/School accounts.

    Will suggest you to follow below for resolution;

    1. Check which identity / account type you’re signing in with when accessing Azure:
      • Are you being asked “Which account do you want? Personal or Work/School"? Or Are you signing in with your outlook.com (personal) identity vs a work/organization tenant account?
    2. Go to the Microsoft security info / MFA registration page:
      • Use the link: aka.ms/mfasetup or myprofile.microsoft.com or mysecurityinfo.microsoft.com (Microsoft’s “security info” page) depending on the account. Sign in with the account you believe should be your work/school (Azure AD) account.
    3. Remove any “Authenticator App / method” registrations tied to your Personal Microsoft Account if they exist, and re‑add the Authenticator method under your Work/School (Azure AD) identity.
      • When adding via Authenticator app, choose “Work or School Account” in the setup. Scan the QR code etc. This ensures the Authenticator app is tied to the Azure AD side and will produce 6‑digit codes (or push notifications).
    4. Verify which MFA method is being used:
    • If push / notification / approval is allowed and configured, that might continue to work.
      • If the service asks for a 6‑digit code (because notification method isn’t available), then having the Authenticator app properly configured for the work/school account will give you a 6‑digit code.
    1. Test it:
      • Log out and log back in to Azure / Office / whatever service.
      • Use the Work/School account path, ensure the MFA method you expect is working (code or push) and see whether code is 6 digits (if code is asked).

    Kindly let us know if the above helps or you need further assistance on this issue. 

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well. 

    Regards,

    Jose Benjamin

    Was this answer helpful?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.