Microsoft Authenticator
No more passwords, easier sign-in, and greater protection for your accounts.
Microsoft Corporation · com.azure.authenticator
UpdatedApr 23, 2026
PublishedNov 26, 2020
Packagecom.azure.authenticator
MD596701c6d084b0707d36172d8c781cef5
SHA1 (signer)86:8D:38:D1:2D:DF:7D:99:26:C6:AB:50:AD:2C:29:4D:53:A7:F6:BD
Signed byCN=Microsoft Corporation Third Party Marketplace (Do Not Trust), OU=Microsoft Azure Authenticator for Android, O=Microsoft Corporation, L=Redmond, ST=Washington, C=US
Architecturesx86-64
Malware scanTRUSTED
Contact[email protected]
Privacy policyView
What's new
We're always working on new features, bug fixes, and performance improvements. Make sure you stay updated with the latest version for the best authentication experience.
Description
Use Microsoft Authenticator for easy, secure sign-ins for all your online accounts using multi-factor authentication or passwordless. You also have additional account management options for your Microsoft personal, work or school accounts.
Getting started with multi-factor authentication
Multi factor authentication (MFA) or two factor authentication (2FA) provides a second layer of security. When logging in with multi-factor authentication, you’ll enter your password, and then you’ll be asked for an additional way to prove it’s really you. Either approve the notification sent to the Microsoft Authenticator, or enter the one-time password (OTP) generated by the app. The one-time passwords (OTP codes) have a 30 second timer counting down. This timer is so you never have to use the same time-based one-time password (TOTP) twice and you don’t have to remember the number. The one-time password (OTP) doesn’t require you to be connected to a network, and it won’t drain your battery. You can add multiple accounts to your app, including non-Microsoft accounts like Facebook, Amazon, Dropbox, Google, LinkedIn, GitHub, and more.
Getting started with passwordless
Use your phone, not your password, to log into your Microsoft account. Just enter your username, then approve the notification sent to your phone. Your fingerprint, face ID, or PIN will provide a second layer of security in this two-step verification process. After you’ve signed in with two factor authentication (2FA), you’ll have access to all your Microsoft products and services, such as Outlook, OneDrive, Office, and more.
Microsoft personal, work or school accounts
Sometimes your work or school might ask you to install the Microsoft Authenticator when accessing certain files, emails, or apps. You will need to register your device to your organization through the app and add your work or school account. Microsoft Authenticator also supports cert-based authentication by issuing a certificate on your device. This will let your organization know that the sign-in request is coming from a trusted device and help you seamlessly and securely access additional Microsoft apps and services without needing to log into each. Because Microsoft Authenticator supports single sign-on, once you have proven your identity once, you will not need to log in again to other Microsoft apps on your device.
Optional Access Permissions
Microsoft Authenticator includes the following optional access permissions. All these require user consent. If you choose to not grant these optional access permissions, you can still use Microsoft Authenticator for other services that do not require such permission. For more information see https://aka.ms/authappfaq
Location: Sometimes your organization wants to know your location before allowing you to access certain resources. The app will request this permission only if your organization has a policy requiring location.
Camera: Used to scan QR codes when you add a work, school, or non-Microsoft account.
Read the contents of your storage: This permission is only used when you report a technical problem through the app settings. Some information from your storage is collected to diagnose the issue.
Getting started with multi-factor authentication
Multi factor authentication (MFA) or two factor authentication (2FA) provides a second layer of security. When logging in with multi-factor authentication, you’ll enter your password, and then you’ll be asked for an additional way to prove it’s really you. Either approve the notification sent to the Microsoft Authenticator, or enter the one-time password (OTP) generated by the app. The one-time passwords (OTP codes) have a 30 second timer counting down. This timer is so you never have to use the same time-based one-time password (TOTP) twice and you don’t have to remember the number. The one-time password (OTP) doesn’t require you to be connected to a network, and it won’t drain your battery. You can add multiple accounts to your app, including non-Microsoft accounts like Facebook, Amazon, Dropbox, Google, LinkedIn, GitHub, and more.
Getting started with passwordless
Use your phone, not your password, to log into your Microsoft account. Just enter your username, then approve the notification sent to your phone. Your fingerprint, face ID, or PIN will provide a second layer of security in this two-step verification process. After you’ve signed in with two factor authentication (2FA), you’ll have access to all your Microsoft products and services, such as Outlook, OneDrive, Office, and more.
Microsoft personal, work or school accounts
Sometimes your work or school might ask you to install the Microsoft Authenticator when accessing certain files, emails, or apps. You will need to register your device to your organization through the app and add your work or school account. Microsoft Authenticator also supports cert-based authentication by issuing a certificate on your device. This will let your organization know that the sign-in request is coming from a trusted device and help you seamlessly and securely access additional Microsoft apps and services without needing to log into each. Because Microsoft Authenticator supports single sign-on, once you have proven your identity once, you will not need to log in again to other Microsoft apps on your device.
Optional Access Permissions
Microsoft Authenticator includes the following optional access permissions. All these require user consent. If you choose to not grant these optional access permissions, you can still use Microsoft Authenticator for other services that do not require such permission. For more information see https://aka.ms/authappfaq
Location: Sometimes your organization wants to know your location before allowing you to access certain resources. The app will request this permission only if your organization has a policy requiring location.
Camera: Used to scan QR codes when you add a work, school, or non-Microsoft account.
Read the contents of your storage: This permission is only used when you report a technical problem through the app settings. Some information from your storage is collected to diagnose the issue.
Required features
- Faketouch android.hardware.faketouch
- Location android.hardware.location
- Screen Portrait android.hardware.screen.portrait
Permissions (32)
Microsoft Authenticator requests the following Android permissions:
- Access Background Location android.permission.ACCESS_BACKGROUND_LOCATION
- Access Coarse Location android.permission.ACCESS_COARSE_LOCATION
- Access Fine Location android.permission.ACCESS_FINE_LOCATION
- Access Network State android.permission.ACCESS_NETWORK_STATE
- Authenticate Accounts android.permission.AUTHENTICATE_ACCOUNTS
- Camera android.permission.CAMERA
- Foreground Service android.permission.FOREGROUND_SERVICE
- Foreground Service Location android.permission.FOREGROUND_SERVICE_LOCATION
- Internet android.permission.INTERNET
- Kill Background Processes android.permission.KILL_BACKGROUND_PROCESSES
- Manage Accounts android.permission.MANAGE_ACCOUNTS
- Nfc android.permission.NFC
- Post Notifications android.permission.POST_NOTIFICATIONS
- Receive Boot Completed android.permission.RECEIVE_BOOT_COMPLETED
- Request Ignore Battery Optimizations android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
- Sec Enterprise Device Admin android.permission.sec.ENTERPRISE_DEVICE_ADMIN
- Sec Mdm Certificate android.permission.sec.MDM_CERTIFICATE
- Sec Mdm Security android.permission.sec.MDM_SECURITY
- System Alert Window android.permission.SYSTEM_ALERT_WINDOW
- Use Biometric android.permission.USE_BIOMETRIC
- Use Credentials android.permission.USE_CREDENTIALS
- Use Fingerprint android.permission.USE_FINGERPRINT
- Vibrate android.permission.VIBRATE
- Wake Lock android.permission.WAKE_LOCK
- Com Azure Authenticator Dynamic Receiver Not Exported Permission com.azure.authenticator.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
- Com Azure Authenticator Knox Support Permission com.azure.authenticator.knox.SUPPORT_PERMISSION
- C2dm Permission Receive com.google.android.c2dm.permission.RECEIVE
- Finsky Permission Bind Get Install Referrer Service com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
- Com Samsung Android Knox Permission Knox Certificate com.samsung.android.knox.permission.KNOX_CERTIFICATE
- Com Samsung Android Knox Permission Knox Cert Provisioning com.samsung.android.knox.permission.KNOX_CERT_PROVISIONING
- Com Samsung Android Knox Permission Knox Enterprise Device Admin com.samsung.android.knox.permission.KNOX_ENTERPRISE_DEVICE_ADMIN
- Com Samsung Android Knox Permission Knox Security com.samsung.android.knox.permission.KNOX_SECURITY
