Passwordless Sign-in for Microsoft 365 and Other Online Services

Introduction

Passwordless sign-in allows MFA‑enabled MinnState users to sign in to Microsoft 365 and other online services without entering a password. Instead, you approve the sign‑in using the Microsoft Authenticator app with number matching.

When you sign in, Microsoft displays a number on the login screen. You open the Microsoft Authenticator app and enter that number to approve the request. This confirms that the person attempting to sign in is the same person approving the request, helping prevent accidental approvals and credential‑theft attacks.

Important Terminology

• Passwordless sign‑in 
  Uses a push notification sent to the Microsoft Authenticator app. You approve the sign‑in by entering a number shown on the screen.

• Microsoft Authenticator Passkey
  Uses a QR code scanned with the Microsoft Authenticator app, followed by biometric or PIN confirmation.
  Note: Bluetooth must be enabled between the computer and the mobile device.

This article focuses on Passwordless Sign-in, not passkeys.

Find a Section:

Install and Setup Authenticator

Enable Passwordless Sign-in 

How to use Passwordless sign-in

How to Verify You Are Already Enrolled

Common Issues

Multi‑Factor Authentication (MFA) Reset Assistance

Instructions to Register for Passwordless Sign-in

Step 1: Install and Set Up Microsoft Authenticator

1. If you already have Microsoft Authenticator installed and configured, skip to Step 2.

2. Go to https://aka.ms/mysecurityinfo
3. Sign in with your MinnState credentials.
4. Select Add sign‑in method → Authenticator app → Add.
5. Follow the on‑screen instructions to install and configure the Microsoft Authenticator app on your phone.
6. When setup is complete, select Done.

Step 2: Enable Passwordless Sign‑In

1. Open the Microsoft Authenticator app on your phone.
2. Tap your @minnstate.edu account.
3. Select Enable phone sign-in or Set up passwordless sign‑in requests.
4. Follow the prompts to finish linking your device.

Confirm Registration

Verify that “Ways to sign in or verify” shows passwordless sign‑in requests.
Once this appears, you are registered for Passwordless Push Authentication.

How to Sign-In Using Passwordless Sign-in

Note: Even after enabling passwordless sign‑in, you may still sign in using your username and password if needed. If you do, you may be prompted to sign in separately to OneDrive and Office applications.

1. On the Microsoft 365 sign‑in page, enter your username:
   • StarID@minnstate.edu or
   • StarID@go.minnstate.edu
2. Select Next.
3. If prompted for a password, choose Other ways to sign in.
4. Select Approve a request on my Authenticator app.
5. Open the Microsoft Authenticator app and enter the number shown on the screen to complete sign‑in.

How to Verify You Are Already Enrolled

1. Visit https://aka.ms/mysecurityinfo.
2. Look for a sign‑in method labeled Microsoft Authenticator – Passwordless sign‑in.

3. If this option is listed, you are already enrolled in Passwordless Push Authentication.

Common Issues 

• Authenticator app is out of date
  Passwordless sign‑in may appear to fail if the Microsoft Authenticator app is not up to date.
  Update the app through the Apple App Store or Google Play Store.

Note: Screens and menu names may vary slightly between iPhone and Android devices.

Multi‑Factor Authentication (MFA) Reset Assistance

If you have:

• Changed your phone number
• Replaced your phone
• Reinstalled the Microsoft Authenticator app

and MFA is no longer working, your MFA settings must be reset before you can sign in again.

Because MFA is security‑sensitive, HuskyTech must perform the MFA reset. Self‑service recovery is not available when the authenticator device or phone number has changed.