Does not work with Microsoft https://mysignins.microsoft.com/security-info #62
Comments
|
It will depend on how you are creating the QRCode. I just tested it in my implementation and everything is fine. Can you share the QRCode creation code? |
|
I have the same issue. The QR code contains data in the following uri format: I assume the secret is a base64 encoded byte array but I'm not sure but I do think that is the value that needs to be like: I tried with different |
|
ok, my bad, seems the secret is not Base64 but Base32 encoded. Using |
|
What hash were you using? I'm having issues getting Microsoft Authenticator work with 256 and 512, but google authenticator and apple passwords work fine. Microsoft Authenticator seems to generate the same code as duo, which also doesn't work. But if I go to SHA1, then all four work. |
|
Are your using Base32 decode? |
I am. It seems that even though I'm passing along SHA256/SHA512 in the algorithm parameter, Microsoft and Duo are only giving back an SHA1 code. I verified them against both 512 and 1 and Google/Apple passed the 512 check and Microsoft/Duo passed the 1 check Are they not compatible with higher hashes? I'm struggling to find up to date info for Microsoft Authenticator compatibility. |
What are you trying to say here? QR codes are generated by the service/application. You're getting a token. Why are you bringing up Microsoft Authenticator? That has nothing to do with? What are you trying to accomplish?
|
I have tried this on https://mysignins.microsoft.com/security-info choose Add new authentication method > Authenticator > not microsoft authenticator > grab the secret key, generate the 6 digits token to register but it never works tried for 30 mins (with fresh tokens)
The text was updated successfully, but these errors were encountered: