For the past month, I've been bombarded with login approval notifications on my Microsoft Authenticator app related to my personal MS account, which is linked to my Gmail. I've been consistently denying these requests. To enhance security, I've taken several steps: enabled Passwordless Login, set up hardware passkeys (Titan keys), configured my account security settings to include Authenticator App, Passkey, and Email as verification methods, and changed my primary sign-in method to an outlook.com address instead of my Gmail. However, when checking my account's Recent Activity page, none of these login attempts show up. I'm worried I might accidentally approve a request if I tap the wrong option on the pop-up. Can anyone clarify how Microsoft security with the authenticator works or suggest more secure methods to lock down my account to prevent these unwanted login attempts?
2 Answers
After switching to the outlook.com address as your primary sign-in, did you disable the option to log in using your Gmail address? Keeping the Gmail enabled might still allow potential access through that email.
Sounds like you've made some great security enhancements! Even with those measures, it's possible to receive a few odd Authenticator requests for some time. Just remember, don’t approve anything unless you're sure it’s you trying to log in. These notifications should diminish soon. Keep an eye out!
Thanks for the reassurance! But I'm curious, why aren't the login attempts showing in my account's recent activity?
I haven’t removed my Gmail yet after changing it to primary. I think I should go ahead and do that.