question

HeineJeppesen avatar image
0 Votes"
HeineJeppesen asked pvanberlo answered

Offline use of Microsoft Authenticator app (one-time password codes only)

Hi,

My customer is implementing ManageEngine PAM360 for Privileged Access Management.
PAM360 can use Microsoft Authenticator for MFA, but only using One-time password codes, so no Azure MFA involved.

In odd cases, like offshore or in heavy concrete structures with no net, the phone running the Authenticator app won't be online, but only be used for getting the codes from. It seems to be working fine offline in short tests.

Not considering various app/OS updates for the phone, would this represent at problem at all?
Are there any restrictions to use the app this way? Completely offline for one-time password codes, for potentially months.

App / Phone OS updates will be performed on an ad-hoc basis, when someone from tech-support is around.

microsoft-authenticator
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

pvanberlo avatar image
0 Votes"
pvanberlo answered

Using the Microsoft Authenticator app in the way you describe should be no problem at all. The only requirement is that the phone keeps an accurate time, since the tokens generated by the app are time based.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.