• Strawberry
    link
    fedilink
    arrow-up
    38
    ·
    11 months ago

    PSA, don’t use Microsoft authenticator. It’s easy to accidentally wipe your cloud backup and lose all your authenticator codes when switching devices

      • Killercat103@infosec.pub
        link
        fedilink
        arrow-up
        6
        ·
        11 months ago

        I think you can use standard TOTP regardless if you add TOTP as an option in the authentication methods on your account page. At least I did and the system has yet to complain.

          • Killercat103@infosec.pub
            link
            fedilink
            arrow-up
            1
            ·
            11 months ago

            Sounds like a antitrust violation imo. (Not based in knowledge of laws). In the future I hope to work in a co-op, non-profit, foss or privacy oriented bussiness or whatever. Just something I believe is beneficial to our future and not detrimental. Don’t care if I lose potential wages or job security.

            Just the standard run of the mill tech company for a private owner idealizing infinite growth for investors and making software that tries taking advantage of the user or even required to use such? Not for me. (I don’t need perfection just want improvent)

    • BluDood@lemmy.world
      link
      fedilink
      arrow-up
      9
      ·
      edit-2
      11 months ago

      Is there actually any way to export the secrets from MS authenticator? I’ve been wanting to move them to something like bitwarden but it’s gonna take ages if I have to reset all ~50

    • edric@lemm.ee
      link
      fedilink
      arrow-up
      4
      ·
      11 months ago

      Can you provide more info how it’s easy to accidentally wipe? I’ve only done a transfer once, but it was by installing authenticator on the new phone and logging in, then deleting the other one on the old phone after testing that the codes work.

      • Strawberry
        link
        fedilink
        arrow-up
        8
        ·
        11 months ago

        You have to begin the recovery on the new device before logging in. If you log in normally and enable cloud backup on the new device, it will simply overwrite the existing backup with a new empty one

    • qaz@lemmy.worldOP
      link
      fedilink
      arrow-up
      3
      ·
      11 months ago

      Don’t worry, I’m going to keep using Bitwarden for my personal accounts.

    • cyberpunk007@lemmy.world
      link
      fedilink
      arrow-up
      3
      ·
      11 months ago

      Yes, and while you can move it phone to phone on iOS, you cannot on Android. So stupid.

      If you are forced to use it by your company just use it for that email, nothing else. Use something like authy instead.

      • highenergyphysics@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        11 months ago

        If your company forced you to use mobile authentication, they should also be providing you with a device on the company plan at no cost to the employee.

        In which case you should absolutely use MS Auth and give them all your delicious work data because nothing personal should be on the device anyway.

      • toastal@lemmy.ml
        link
        fedilink
        arrow-up
        2
        ·
        11 months ago

        Authy requires a phone number last I checked & is a part of a for-profit entity. TOTP management is a simple task so there is no reason not to be using something open source.