Microsoft Authenticator-App

In addition to the security key for employees, we recommend the Microsoft Authenticator app as an app-based method for multi-factor authentication. You can easily install and use this app on your personal smartphone.

If you already have another authentication app (such as Google Authenticator, Authy, or a similar application) installed on your smartphone, you can also use it and link your Microsoft account there. In principle, any authentication app can be used regardless of the manufacturer, provided it supports the Time-based One-Time Password method (TOTP). To set up an alternative authentication app instead of the Microsoft Authenticator app, please follow these instructions.

Once set up, you can use the Microsoft Authenticator app via one-time codes or push notifications. Each time you log in, you can choose between one-time codes and push notifications. By default, we recommend that you log in with push notifications.

If this is the first MFA method you are setting up, the setup assistant for Windows Hello for Business will appear the next working day when you log in for the first time. Please follow the instructions and set up the desired method (fingerprint, facial recognition). A PIN must always be set up. If you would like to set it up at a later time, skip the setup wizard. To set up Windows Hello for Business yourself at any time, follow the instructions for Windows Hello for Business.

Setting up the Microsoft Authenticator app

Use a current browser (e.g., Edge, Chrome, Firefox, or macOS Safari 16 or later). Outdated browsers or embedded WebViews (in apps) can cause errors such as “Browser not supported.”

Open aka.ms/mysecurityinfo
Select “Authenticator App” as the new method
Link the app to your account by scanning the QR code displayed in the Authenticator app
Test the link by confirming it for the first time in the app.

During setup, you may be prompted to install the Microsoft Authenticator app on your smartphone—to do so, scan the QR code or open the App Store link.

iOS: App Store

Android: Google Play Store

1. Access safety information

Sign in at aka.ms/mysecurityinfo. You should be in the left navigation under “

Security Information.”

Click “Add Sign-in Method.”

2. Select Microsoft Authenticator

A window with sign-in methods will open.

Select “Microsoft Authenticator” from the list of methods.

Download and install the Microsoft Authenticator app on your smartphone (if you haven't already done so).

Then click “Next.”

4. “Set up account” notification

A message will appear asking you to set up an account in the Authenticator app.

You can skip this message by clicking “Continue.”

5. Display QR code

A QR code will be displayed. This will be scanned with your smartphone in a moment.

Leave the tab open and switch to the Microsoft Authenticator app. Only click “Continue” after completing step 7, once you have scanned the QR code.

6. Add account in the app

Open the Authenticator app, tap the QR code icon in the bottom right corner to add a new account.

7. Scan QR code

Point the camera at the QR code displayed to link the account. Once the QR code has been successfully scanned, an entry will automatically be created in the Authenticator app.

Then switch back to your PC and click “Continue.”

8. Test of the registration

Microsoft will now test the connection—an authentication request will be sent to your smartphone.

You will see this request on your PC in the Microsoft portal and, after a few seconds, in the Microsoft Authenticator app.

9. Confirm in the app

Switch back to the authenticator app.

Enter the number displayed and confirm with “Yes” to approve the login attempt.

10. Conclusion

The test is successfully completed once you receive the confirmation:
“Notification approved”

You can click “Continue.”

11. Setup completed successfully

Your smartphone has been successfully registered using the Microsoft Authenticator push notification method.

You can now see it in your security information overview and use it to confirm logins.

Sign in with the Microsoft Authenticator app

Once the Microsoft Authenticator app is set up, log in to IT services as you would with your username (format: ZIM-Kennung@ads.uni-passau.de) and password. You will then be prompted on the login screen to confirm the login process via the app by entering the two-digit number displayed there.

At the same time, the Microsoft Authenticator app will send a notification to your smartphone (push notification). Open this message, enter the two-digit number, and confirm the login with “Yes” to grant access.

If the number matches, you should be successfully logged in.

1. When logging in to IT services, you will be asked for your username (format: ZIM-Kennung@ads.uni-passau.de) and password.

Enter your username in the first window and your password in the next window.

2. After logging in with your username and password, a window will appear for selecting the second factor. Select the option “Confirm a request in my Microsoft Authenticator app.”

Anmelden mit Microsoft Authenticator App

3. You will then be prompted to approve the login in the Microsoft Authenticator app.

To do this, open the Microsoft Authenticator app. The approval request should appear automatically after a few seconds. If necessary, swipe down on the screen to refresh the requests.

A dialog box will now appear. Enter the number displayed on your PC and confirm with “Yes.”

If everything worked, you will be logged in on your PC. You can close the app.

Microsoft Authenticator App number Matching number matching 80 (blurred)