![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 14.000000000000002%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 25%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 33%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDL%3C/text%3E%3C/svg%3E)
Unwanted Microsoft Authenticator prompts usually mean someone is repeatedly trying to sign in with the correct username but without full access to your second factor. Take these steps to protect the account and reduce or block these attempts:
- Treat the prompts as suspicious and deny them
When an unexpected Authenticator notification appears, always choose Deny. The Authenticator app is designed to help prevent unauthorized access by letting you reject fraudulent sign-in attempts. - Change the account password immediately
Change the Microsoft account password to a strong, unique one that is not used on any other site. This helps if an attacker has guessed or obtained the current password. - Review recent sign-in activity
For a work or school account, review sign-in activity to see where the attempts are coming from and confirm they are not yours. If you see unsuccessful sign-ins or entries marked as unusual, change the password and keep multi-factor authentication (MFA) enabled so attackers cannot get in even if they know the password. - Strengthen and review MFA methods
- Ensure Microsoft Authenticator is correctly set up and secured on a trusted device.
- Remove any MFA methods or security info you do not recognize (such as unknown phone numbers or email addresses) and add secure methods like Microsoft Authenticator or security keys.
- Keep multiple verification methods configured so there is always a safe fallback.
- Be aware of anomalous sign-in behavior with Authenticator
Authenticator may stop sending push notifications for anomalous or unfamiliar sign-ins. In those cases, sign-in approval requires opening the Authenticator app and manually refreshing to see and approve requests. This behavior helps reduce the risk of accidentally approving fraudulent prompts. - If attempts are repeated or suspicious, involve your admin or support
- For work or school accounts, contact the organization’s IT administrator and ask them to review Microsoft Entra sign-in logs for malicious activity and adjust security policies if needed.
- For personal Outlook.com/Microsoft accounts, if unusual sign-in activity continues or the account may be compromised, use the Sign-in Helper and follow guidance on securing or recovering the account.
- Avoid repeated sign-in attempts yourself
Repeated failed attempts can trigger protection mechanisms that temporarily block verification codes or sign-ins. If locked out, wait before trying again and use alternative verification methods where possible.
By combining a strong password, properly configured MFA with Microsoft Authenticator, and regular review of sign-in activity, unauthorized attempts can be blocked from succeeding even if they continue.
References:
- Authentication methods in Microsoft Entra ID - Microsoft Authenticator app
- View your work or school account sign-in activity from My Sign-ins
- Common problems with two-step verification for a work or school account
- Troubleshoot Microsoft verification code issues
- How to help keep your Microsoft account secure
- What happens if there's an unusual sign-in to your account
- Unblock my Outlook.com account
- Troubleshoot problems with Microsoft Authenticator