• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login
UBports Robot Logo UBports Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login

Ubuntu Touch alternative for MS Authenticator app

Scheduled Pinned Locked Moved Support
3 Posts 3 Posters 1.6k Views 1 Watching
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W Offline
      WillemHexspoor
      last edited by 18 Aug 2019, 06:39

      Is there an alternative available for the Microsoft Authenticator app in Ubuntu Touch Stable?
      The Authenticator NG app from the Openstore does not recognize the QR code that is supposed to be used to register the MS Authenticator. If trying to manually set up the account, I have to enter a nine digit activation and a phonefactor URL. I can only control the client side of the connection, my guess is that the server side uses Azure AD.

      D 1 Reply Last reply 7 May 2021, 18:40 Reply Quote 0
      • D Offline
        dobey
        last edited by 19 Aug 2019, 15:26

        Unfortunately, the PhoneFactor enrollment and such seem to be proprietary, and I am unable to find any API documentation for it, therefore it's not possible to implement an alternative client to MS Authenticator for this use case currently.

        However, as soon as it becomes possible to implement alternative apps for this, we can get it added to Authenticator NG.

        1 Reply Last reply Reply Quote 0
        • D Offline
          Dave @WillemHexspoor
          last edited by Dave 5 Jul 2021, 18:41 7 May 2021, 18:40

          @willemhexspoor Hi, seeing this question now, I was recently faced with a similar problem, having to use a Azure Active Directory cloud login, where the admins had forced users to configure MFA. Turns out that there is a well hidden way to configure a TOTP code-generator (i.e. google-authenticator) for use as second factor with Azure AD.

          This was very frustrating, and I think that the MFA setup page uses dark patterns to prevent users from discovering that feature. There is not much information online.

          After some googling I just found this old article that seems to describe the method. When the Azure login page tells you "Your organization requires more information bla bla" and you go to the setup page where it displays the QR code for windows authenticator, there will be some very misleading seemingly unimportant link (like "configure app without notifications") which will switch the whole authentication scheme to TOTP. Of course it will never tell you that it is using TOTP and the name Google Authenticator will not appear anywhere. Still it is TOTP and will work correctly using any "standard" authenticator app.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post