One-time code use.

Question

I have a number of outlook.com accounts, set up for specific email types, all with very strong (20+ characters, different for each email) auto-generated passwords. Why am I constantly being asked to use an Authenticator, set up a passkey, or a one-time code? How can I permanently opt out of these, like the "old days"?

Answer 1

AI response stated that you can't opt out of the enhanced security functions, even if using a very strong password. It does mention going into security settings and seeing if there are settings which are forcing these procedures at every log in. Which settings should I be looking at?

Answer 2

Hello DHF, thanks for posting this in our community.

This behavior is due to Microsoft’s modern security requirements for Outlook.com and other Microsoft accounts. Microsoft enforces multi-factor authentication (MFA) and passwordless options such as the Authenticator app, passkeys, and one-time codes to protect accounts from phishing and credential theft. Even strong passwords are considered insufficient because attackers often exploit reused credentials or social engineering. If you log in from a new device, browser, or location, or clear cookies, Microsoft will prompt for extra verification.

Microsoft removed the ability to fully disable MFA for consumer accounts because it’s a critical defense against account compromise. Even with strong passwords, MFA is now mandatory for high-risk scenarios.

To minimize these prompts, enable “Stay Signed In” when signing in by checking “Keep me signed in.” You can also set up trusted devices. After signing in, select “Don’t ask again on this device.” This stores a token so you won’t be prompted unless something changes.

Kind regards,

John Oli