I replaced my Microsoft account password with a password – and you also need

These days, I am very popular in Russia, Ukraine, Moldova, Bosnia-Herzegovina and even Albania. At least, this is what is seen based on this list of recent efforts to sign in my Microsoft account. (It is available for any microsoft account on this management page: https://acccount.microsoft.com. After signing in, click on security and then click “My sign-in activity”)

In my case, those desperate hackers are wasting their time. They can try every combination of letters, numbers and symbols in every alphabet known to humanity, even if it takes to the end of the universe, and they will not guess passwords for my microsoft account.

Also: 10 Pasaki Survival Tips: Now prepare for your passwordless future

Why am I so confident? Because, long ago, I opted to make that account passwordless, replaced the password with a passki, which allows me to access services attached to my microsoft account using biometrics or device pin on my Windows PC. If some strangers want to sign in to my account on a new device, they will have to celebrate them to approve the sign-in device I have already set. (Sorry, Ivan, I say Nate For unwanted requests from Russia.)

Should you switch to password to password?

Microsoft wants you to do the same as I did and dig your password. At the beginning of this year, the company rolled out a new user experience, “adapted to a password-free and passing-first experience”. These new features can be used with any free Microsoft account, but the entra ID accounts are not available with accounts that are used for Microsoft 365 business and enterprise membership and sign in corporate networks.

Too: The best VPN services (and how to choose for you)

So, should you do this? For most people, the answer is yes. Removing your password dramatically increases the safety of your microsoft account and makes it more resistant to fishing attacks. Once you remove your password, the only way to sign in a device is to prove your identity using biometrics (fingerprint or face recognition), hardware security keys, or password manager, using passakies associated with synchronous passwords saved in password manager. You also have the option to answer a push notification on a reliable device, as shown here.

The only technical reason for making this change is that if you use old apps or hardware devices that do not support modern authentication methods: Office 2010 or before; Mac 2011 or before offices; Xbox 360; Or a PC is running Windows 8.1 or before. If you use a remote desktop feature to connect to another PC using your microsoft account, you will also participate in problems.

Also: How do I easily set passes through my password manager

Going to passwordless is not a step that you take carelessly. Along with this, there is an increased risk that you will exclude from your account. You can reduce the risk by ensuring that you have several safe ways to reach your account before taking out your password.

Ready to start? let’s go. Oh and Do not leave step 5.

Step 1: Check your current safety settings

Go to your Microsoft Account Management Page https://acccount.microsoft.com And sign in using your password. Click on the Security Tab and then “Manage how I sign in.” That one page shown here should open:

It is an account I have created for the test purposes. It has a password, and I have added an email address used for verification purposes. Pay attention to two options under the title “Additional Security”-the additionless account and two-phase verification are closed.

Click “Add a new way to sign or verify”. This opens the page shown here:

Step 2: Set an authent app on your mobile device

Click on the middle option, “Use an app.” It gives you two options. Microsoft authentic app depends on push notifications; You can also set a classic time-based one-time password (TOTP) authenticator and generate six-numeric codes supplied on the request you request.

To use Microsoft Artist, download and install the Microsoft Authentic App on your mobile device and then click next to display the QR code shown here:

Open the authenticator app on your mobile device, click on the plus sign, and scan the QR code using a smartphone camera to add your new account. The result should look something like this:

If you like to use another TOTP app, such as Auti or Google Artist, click “Use the App”. In dialogue “Set the Microsoft Artist”, select the option to set a separate authentic app. It produces a bar code that forms a standard 6-conductive TOTP code that you enter when you need to certify. Note that you can also use this option with Microsoft Artist. Choose the option to set a separate app and then add an account to the microsoft authenta using the barcode supplied. As a result, there will be two entries, one that uses information, the other which uses the TOTP code.

You are not yet. To avoid locking from your account, you will need at least two other methods to sign in.

Step 3: Set a passki using your PC or Mac

If your Windows supports PC or Mac biometric authentication, you can use that method to make a device-bound passki. Choose “face, fingerprint, pin, or security” option to make a passki, which is bound by that biometric hardware, using Windows Hello using Windows Hello or fingerprint reader on Windows PC, or using an Apple ICloud Kechen Passki, using Touch ID on a macbook. You can also use this option with USB security key.

After setting it, you will sign in using such a dialogue.

If you have a PC running the latest release of Windows 11, you can use Windows Hello to make and save Pasaki for other sites and services. For most third-party sites, there is an additional option that you can use instead of passwords, not as a complete replacement as it is for a password-free microsoft account.

Step 4: Add at least one more backup certification options

From dialogue in step 1, choose at least one of the following options as additional sign-in method.

• To enter an alternative email address, click “email a code” (not tied to your Microsoft account!) Where you can get a code.
• Click “Show more options” to display the option to enter the phone number where you can get a code via SMS. In addition to your personal phone, consider adding a phone number that relates to your spouse or partner, who gives you an additional option if your own phone is lost or stolen.
• Select the “Use an app” and set a non-microsoft authentic app as described in step 2. (If possible, consider setting that app on a phone other than your primary phone.)
• If your password manager supports this feature, you can also make a synchronous passki that you can use on any device where you have been signed to use that software. Dashlen, 1password, and Bitwardon all support this feature.

Step 5: Create a recovery code and save it to a safe place

Do not skip this step! This is your “Emergency, Break Glass” option.

From step 1 to “How I sign in” go back to and scroll in all ways below the page. Under the title “Recovery Code”, click on the option to generate a new code. Print it and save the code to a safe place. Consider sending a copy to a reliable friend or family member via email, which can remove it when you need it.

If everything else fails, this code will determine that you can recover your account.

Step 6: Turn on a passwordless option

You do not have to do this step immediately. All password -free options you set (authenticator app, passage, and so on) will work immediately. Give yourself one or two weeks to ensure that everything is working as expected. When you are ready, go back to “how I sign in”, scroll on the “password -free account” section, and turn on that option.