Starting February 2026, Microsoft Authenticator will block Entra credentials on jailbroken/rooted iOS and Android devices through a phased rollout: warning, blocking, then wiping credentials. This security feature requires no admin setup. Users on compliant devices remain unaffected. Organizations should notify users and update documentation accordingly.
I really think we need a :microsoft-cool: emoji
currently using google authenticator on my rooted phone. I know one day it will come to me as well, but hoping i get at least a few years left
Ive heard that there are some very good authenticator applications on f-droid or izzyondroid, but yeah it’s hard for me to conjure the energy to do anything to switch until something really inconvenient happens
I’m using AEGIS Authenticator from FDroid and I’m very happy with it
Bitwarden also has 2FA integration, either through their Premium subscription (a few $/y) or self-hosting (which I’m doing, it’s really trivial).
I do this too but something about putting the second factor right next to the password is pretty silly.
I know it weakens its purpose but personally cba to grab my phone / open another app every time I want to log into something. It automatically copies the 2fa code to the clipboard too after having it fill in the password which is very convenient.
In my mind it’s ok because much of the utility of TOTP is to mitigate for people reusing the same password on multiple sites.
But there are other threats like someone accessing your device that might be mitigated with TOTP but aren’t when the TOTP is in the password manager.
Aegis is good. If you are rooted it supports migrating secrets from other authenticators (though generally, rooting Android is not needed, and bad for your security).