Ubuntu Touch alternative for MS Authenticator app

WillemHexspoor

Is there an alternative available for the Microsoft Authenticator app in Ubuntu Touch Stable?
The Authenticator NG app from the Openstore does not recognize the QR code that is supposed to be used to register the MS Authenticator. If trying to manually set up the account, I have to enter a nine digit activation and a phonefactor URL. I can only control the client side of the connection, my guess is that the server side uses Azure AD.

dobey

Unfortunately, the PhoneFactor enrollment and such seem to be proprietary, and I am unable to find any API documentation for it, therefore it's not possible to implement an alternative client to MS Authenticator for this use case currently.

However, as soon as it becomes possible to implement alternative apps for this, we can get it added to Authenticator NG.

Dave

@willemhexspoor Hi, seeing this question now, I was recently faced with a similar problem, having to use a Azure Active Directory cloud login, where the admins had forced users to configure MFA. Turns out that there is a well hidden way to configure a TOTP code-generator (i.e. google-authenticator) for use as second factor with Azure AD.

This was very frustrating, and I think that the MFA setup page uses dark patterns to prevent users from discovering that feature. There is not much information online.

After some googling I just found this old article that seems to describe the method. When the Azure login page tells you "Your organization requires more information bla bla" and you go to the setup page where it displays the QR code for windows authenticator, there will be some very misleading seemingly unimportant link (like "configure app without notifications") which will switch the whole authentication scheme to TOTP. Of course it will never tell you that it is using TOTP and the name Google Authenticator will not appear anywhere. Still it is TOTP and will work correctly using any "standard" authenticator app.