Set up your security info (preview) from the sign-in page prompt

You can follow these steps if you're prompted to set up your security info immediately after you sign-in to your work or school account.

You'll only see this prompt if you haven’t set up the security info required by your organization. If you've previously set up your security info, but you want to make changes, you can follow the steps in the various method-based how-to articles. For more information, see Add or update your security info overview.

If what you're seeing on your screen doesn't match what's being covered in this article, it means that your administrator hasn't turned on this experience yet. Until this experience is turned on, you must follow the instructions and information in the Set up my account for two-step verification section.

Sign in to your work or school account

After you sign in to your work or school account, you'll see a prompt that asks you to provide more information before it lets you access your account.

Prompt asking for more info

Set up your security info using the wizard

Follow these steps to set up your security info for your work or school account from the prompt.

Important

This is only an example of the process. Depending on your organization's requirements, your administrator might have set up different verification methods that you'll need to set up during this process. For this example, we're requiring two methods, the Microsoft Authenticator app and a mobile phone number for verification calls or text messages.

  1. After you select Next from the prompt, a Keep your account secure wizard appears, showing the first method your administrator and organization require you to set up. For this example, it's the Microsoft Authenticator app.

    Note

    If you want to use an authenticator app other than the Microsoft Authenticator app, select the I want to use a different authenticator app link.

    If your organization lets you choose a different method besides the authenticator app, you can select the I want to set up a different method link.

    Keep your account secure wizard, showing the auth app download page

  2. Select Download now to download and install the Microsoft Authenticator app on your mobile device, and then select Next. For more information about how to download and install the app, see Download and install the Microsoft Authenticator app.

    Keep your account secure wizard, showing the authenticator Set up your account page

  3. Remain on the Set up your account page while you set up the Microsoft Authenticator app on your mobile device.

  4. Open the Microsoft Authenticator app, select to allow notifications (if prompted), select Add account from the Customize and control icon on the upper-right, and then select Work or school account.

    Note

    If this is the first time you're setting up the Microsoft Authenticator app, you might receive a prompt asking whether to allow the app to access your camera (iOS) or to allow the app to take pictures and record video (Android). You must select Allow so the authenticator app can access your camera to take a picture of the QR code in the next step. If you don't allow the camera, you can still set up the authenticator app, but you'll need to add the code information manually. For information about how to add the code manually, see see Manually add an account to the app.

  5. Return to the Set up your account page on your computer, and then select Next.

    The Scan the QR code page appears.

    Scan the QR code using the Authenticator app

  6. Scan the provided code with the Microsoft Authenticator app QR code reader, which appeared on your mobile device after you created your work or school account in Step 5.

    The authenticator app should successfully add your work or school account without requiring any additional information from you. However, if the QR code reader can't read the code, you can select the Can't scan the QR image and manually enter the code and URL into the Microsoft Authenticator app. For more information about manually adding a code, see Manually add an account to the app.

  7. Select Next on the Scan the QR code page on your computer.

    A notification is sent to the Microsoft Authenticator app on your mobile device, to test your account.

    Test your account with the authenticator app

  8. Approve the notification in the Microsoft Authenticator app, and then select Next.

    Success notification, connecting the app and your account

    Your security info is updated to use the Microsoft Authenticator app by default to verify your identity when using two-step verification or password reset.

  9. On the Phone set up page, choose whether you want to receive a text message or a phone call, and then select Next. For the purposes of this example, we're using text messages, so you must use a phone number for a device that can accept text messages.

    Begin setting up your phone number for text messaging

    A text message is sent to your phone number. If would prefer to get a phone call, the process is the same. However, you'll receive a phone call with instructions, instead of a text message.

  10. Enter the code provided by the text message sent to your mobile device, and then select Next.

    Test your account with the text message

  11. Review the success notification, and then select Done.

    Success notification

    Your security info is updated to use text messaging as a backup method to verify your identity when using two-step verification or password reset.

  12. Review the Success page to verify that you've successfully set up both the Microsoft Authenticator app and a phone (either text message or phone call) method for your security info, and then select Done.

    Wizard successfully completed page

    Note

    If your organization requires you to use app passwords, you might see an additional section in this wizard, where you can set it up. If you see a third section, called App passwords, you must fill it out before you will be able to complete the wizard. For steps about how to add an app password, see the Manage your app passwords section of this article.

Manage your app passwords

Certain apps, such as Outlook 2010, don't support two-step verification. This lack of support means that if you're using two-step verification in your organization, the app won't work. To get around this problem, you can create an autogenerated password to use with each non-browser app, separate from your normal password.

Note

If you don't see this option in the wizard, it means that your administrator hasn't set it up. If this isn't set up, but you know you need to use app passwords, you can follow the steps in the Set up app passwords from the Security info (preview) page.

When using app passwords, it's important to remember:

  • App passwords are autogenerated and only entered once per app.

  • There's a limit of 40 passwords per user. If you try to create one after that limit, you'll be prompted to delete an existing password before being allowed to create the new one.

  • Use one app password per device, not per app. For example, create a single password for all the apps on your laptop, and then another single password for all the apps on your desktop.

To add app passwords in the sign-in wizard

  1. After finishing the previous sections of the wizard, select Next and complete the App password section.

  2. Type the name of the app that needs the password, for example Outlook 2010, and then select Next.

    Add the app password name in the wizard

  3. Copy the password code from the App password screen and paste it into the Password area of the app (in this example, Outlook 2010).

    App password page, with password for copy

  4. After you copy the password and paste it in the app, return to this wizard to make sure all of your sign-in method information is accurate, and then select Done.

    App password page, with completion notice

Next steps