this post was submitted on 06 Mar 2026
309 points (97.5% liked)

Android

21559 readers
748 users here now

The new home of /r/Android on Lemmy and the Fediverse!

Android news, reviews, tips, and discussions about rooting, tutorials, and apps.

🔗Universal Link: !android@lemdro.id

💡Content Philosophy:

Content which benefits the community (news, rumours, and discussions) is generally allowed and is valued over content which benefits only the individual (technical questions, help buying/selling, rants, self-promotion, etc.) which will be removed if it's in violation of the rules.

Support, technical, or app related questions belong in: !askandroid@lemdro.id

For fresh communities, lemmy apps, and instance updates: !lemdroid@lemdro.id

💬Matrix Chat

💬Telegram channels / chats

📰Our communities below

Rules

  1. Stay on topic: All posts should be related to the Android OS or ecosystem.

  2. No support questions, recommendation requests, rants, or bug reports: Posts must benefit the community rather than the individual. Please post to !askandroid@lemdro.id.

  3. Describe images/videos, no memes: Please include a text description when sharing images or videos. Post memes to !androidmemes@lemdro.id.

  4. No self-promotion spam: Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.

  5. No reposts or rehosted content: Share only the original source of an article, unless it's not available in English or requires logging in (like Twitter). Avoid reposting the same topic from other sources.

  6. No editorializing titles: You can add the author or website's name if helpful, but keep article titles unchanged.

  7. No piracy or unverified APKs: Do not share links or direct people to pirated content or unverified APKs, which may contain malicious code.

  8. No unauthorized polls, bots, or giveaways: Do not create polls, use bots, or organize giveaways without first contacting mods for approval.

  9. No offensive or low-effort content: Don't post offensive or unhelpful content. Keep it civil and friendly!

  10. No affiliate links: Posting affiliate links is not allowed.

Quick Links

Our Communities

Lemmy App List

Chat and More

founded 2 years ago
MODERATORS
ijeff
ladfrombrad
Paradox
multimoon
mikestevens
Devgard@lemmy.world
limerod@reddthat.com
Netrunner
309
Microsoft Authenticator might exclude GrapheneOS in the future due to root detection (piunikaweb.com)
submitted 1 day ago by schizoidman@lemmy.zip to c/android
123 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] kyub@discuss.tchncs.de 57 points 1 day ago* (last edited 10 hours ago) (2 children)

Use Aegis.

The MS Authenticator contains analytics & telemetry & way too many permissions and should not be used: https://reports.exodus-privacy.eu.org/en/reports/com.azure.authenticator/latest/ (it looks more like a scam than legitimate, but that's exactly what Microslop is in 2026...)

For comparison, Aegis is a legitimate app that only does what it should do: https://reports.exodus-privacy.eu.org/en/reports/com.beemdevelopment.aegis/latest/#permissions

Any other authenticator also works with any MS service so there's no reason at all to use the MS Authenticator unless you like handing over more data to MS for no reason. EDIT: According to comments, your company might have the option to enforce usage of MS Authenticator only. But this doesn't seem to be the default, at least in Germany where I've heard from 2 sources that they can use any authenticator app for M365 for example.

By the way, Graphene OS is NOT rooted, but what does truth or sane app behavior even mean anymore for Microslop in 2026... Just stop using that garbage.

[–] fluckx@lemmy.world 7 points 21 hours ago (2 children)

Agree for personal use.

Professionally I've had situations where Ms authenticator was the only option because the only 2FA they allow is push notifications on the authenticator app. :(

I even used freeotp+ for my ORG 2FA and aegis for my personal so I could easily keep them split ( and you can export / securely store the backups somewhere ).

Time to get corps to ditch Microsoft >.>

[–] lka1988@lemmy.dbzer0.com 6 points 19 hours ago (1 children)

Professionally I’ve had situations where Ms authenticator was the only option because the only 2FA they allow is push notifications on the authenticator app.

If a company requires me to install specific apps that may or may not work on my device, I expect that company to provide me with a device that can be set up for their stuff.

I've run two separate phones for nearly 15 years now: my personal phone, and a work-issued phone. The work phone is turned off and left on my night stand as soon as I get home, and only turned on again when I'm getting ready to go back to work. I don't carry it 24/7 as some have been led to believe, for some reason. It's really nice to have that separation. And work pays for it.

[–] definitemaybe@lemmy.ca 1 points 6 hours ago

Peach. Separation is where it's at, and companies should be required to provide technology required for work.

In an ideal world "No, I don't want that on my personal device" should be sufficient, but it's a lot harder to argue with "No, I literally cannot install that on my device; it's incompatible. Provide an alternative for me."

I'm finally taking steps to walk the walk re: phone separation—I'm hoping the Click Communicator pans out, since it seems like the ideal work phone. (I get a stipend for tech, so I can get whatever I want. I've been pocketing the extra cash, but it's time to get an actual work phone.) I'm just hoping I can wait it out and ignore the Authenticator warnings until then, or maybe look into Magisk Hide or whatever.

[–] besbin@lemmy.ml 4 points 20 hours ago

We do need to get corps to move away from closed source protocols like MS, Google, Meta and others push notifications though. Those are not in anyway safer and are just basically trap to force people to use their apps

[–] brax@sh.itjust.works 1 points 1 day ago (2 children)

Anybody have a good reason to not use Authy? I've seen Aegis mentioned quite a bit but nobody supporting/dunking on Authy. I thought they were one of the more popular choices.

[–] lka1988@lemmy.dbzer0.com 7 points 19 hours ago

Authy is closed source and owned by Twilio, a publicly-traded company.

Aegis is FOSS.

Do what you will with this info.

[–] burned_das_brot@feddit.org 9 points 1 day ago* (last edited 1 day ago) (1 children)

Authy also doesn't work on GrapheneOS.

EDIT: And Authy scrapped their desktop apps. I'm using ente instead.

https://f-droid.org/packages/io.ente.auth/

[–] brax@sh.itjust.works 4 points 22 hours ago

That makes sense. Thanks! I don't use graphene but I do use authy and wondered if I should be reconsidering my choices 😅