Introduction
Password-less authentication uses number matching in the Microsoft Authenticator App to allow MFA-enabled users to log into Office 365 and other online services without entering a password. During the authentication process, a number will be displayed on the login screen, which must be entered into the Authenticator app to complete the sign-in.
This extra step ensures that the person requesting access is the same person approving the sign-in on their device. Without number matching, a malicious actor with stolen credentials could trigger a sign-in prompt to the victim’s device. If the victim mistakenly approves it, the attacker gains access. Number matching helps prevent this scenario.
Instructions to Register for Passwordless Authentication
If you already have the Microsoft Authenticator App installed, skip to step 5.
- Go to https://aka.ms/mysecurityinfo.
- Sign in and click Add sign-in method > Authenticator app > Add.
- Follow the instructions to install and configure the Microsoft Authenticator app.
- Select Done to complete setup.
- In the Authenticator app, choose Set up phone sign-in from the drop-down menu of your MNSCU account.
- Follow the app instructions to finish registering your account and device.