![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 90%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBB%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation
The prompt in Microsoft Authenticator is a passwordless phone sign‑in request. A sign‑in was started on another device (for example, a browser on Windows), and that device is showing a two‑digit or three‑digit number. Authenticator is asking for that same number to confirm the sign‑in.
Key points:
- The “number shown to sign in” appears on the device or app where the sign‑in was initiated (for example, a Microsoft sign‑in page in a browser). If there is no such page open and no one you know is trying to sign in, treat this as an unexpected request.
- Never enter a random number. If the request is unexpected, tap “No, it’s not me” to deny it. This protects the account from someone else trying to sign in.
- If these prompts appear repeatedly when no sign‑in is being performed, change the account password and review security info at the Microsoft account security page to ensure only trusted methods are configured.
- If the prompt is blocking use of the app, fully close Authenticator and reopen it. If the same prompt reappears without any active sign‑in attempt, deny it again and consider removing and re‑adding that account in Authenticator after verifying access to backup sign‑in methods.
This behavior is part of the passwordless sign‑in via notifications feature, where instead of entering a password, the user confirms a number in Authenticator to complete sign‑in.
References: