Introduction
Passwords have always been a major security risk, often leading to phishing, credential theft, and user frustration. To address this, Microsoft introduced passwordless authentication, allowing users to sign in securely and seamlessly without traditional passwords — using the Microsoft Authenticator app instead.
Prerequisites
Before enabling passwordless authentication using Microsoft Authenticator, ensure the following prerequisites are met:
Microsoft Entra ID tenant
Microsoft Authenticator app (iOS/Android)
User registered with Entra ID
MFA enabled
Authenticator method allowed in Entra ID settings
Internet access for approvals
Step 1: Sign in to https://entra.microsoft.com/
![Image-01]()
Step 2: Navigate to the left-side blade and select Authentication methods then select Policies.
![Image-02]()
Step 3: Under the Policies, enable Microsoft Authenticator
Note: You can choose to enable passwordless authentication for all users or specific security groups. In my case, I’ve enabled it for all users.
![Image-03]()
Step 4: Enable MFA using the Microsoft Authenticator app
![Image-04]()
Step 5: Now, go to the Authenticator app and complete the device registration process.
![Image-06]()
![Image-07]()
Step 7: To verify, go to portal.azure.com or entra.microsoft.com, navigate to Entra ID → Devices, and you’ll see your mobile device listed with Microsoft Authenticator enabled.
![Image-08]()
Step 8: You can now sign in to Microsoft services, such as the Azure portal, without a password by approving the sign-in through the Authenticator app.
![Image-09]()
Step 9: When you select the “Use an app instead” option, a verification prompt will appear in your Authenticator app, asking you to approve the matching number to complete the sign-in.
![Image-10]()
Step 10: After approving the request, you’ll be successfully signed into your account.
![Image-11]()
Conclusion
Passwordless authentication with Microsoft Authenticator enhances security and simplifies access. It removes password risks while offering a fast, secure, and user-friendly sign-in experience aligned with Microsoft’s Zero Trust approach.