Feeds.4Sysops
Microsoft to Transition to Passkeys, Retiring SMS and Voice MFA by 2027
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Microsoft Entra ID will enforce passkeys as the default authentication method starting September 1, 2026, replacing SMS and voice-based multifactor authentication (MFA). Users currently relying on these legacy methods will be prompted to register for passkeys during sign-in. The retirement of SMS and voice authentication services will occur on February 1, 2027, to promote phishing-resistant alternatives. Organizations that do not transition risk disruptions for users dependent on phone-based verification. This shift aims to enhance security by utilizing public-key cryptography, which prevents credential theft. Microsoft is encouraging users to adopt more secure authentication practices ahead of the deadlines. The transition is part of a broader industry trend towards stronger authentication methods.
Key Points: • Microsoft Entra ID will default to passkeys for authentication starting September 1, 2026. • SMS and voice-based MFA will be retired on February 1, 2027, affecting users reliant on these methods. • Organizations must transition to avoid disruptions in user sign-in processes.