Forum Discussion
USB security key MFA prompt does not work on any app like Teams or Outlook, only via webbrowser
I have this issue on every computer or device I use. I use MFA and I'm a Global Admin. I ONLY have USB keys as my security method and have 3 added.
If I'm using Chrome, Edge, any browser and get prompted for MFA, I simply insert the key, tap it, enter my pin, tap the key again and it works.
However, for any desktop application, such as Teams, Outlook, etc, whenever it prompts me to log in, if I pick USB Security Key it just freezes and displays the loading progress bar at the top over and over.
It does this on every computer I try, Mac, Windows, etc. The only option to ever authenticate is to go in, add the Microsoft Authenticator app as a MFA option, and then use that, then remove it as an option which is obviously not ideal.
I have never been able to get USB security to work outside of a browser. If I access the same Teams, Outlook, etc from ANY web browser and get prompted, it works every single time.
Please see screenshot above for what I'm referring to. The moment I click "Windows Hello or USB Security key" those blue dots just bounce across the top of the screen forever, it never proceeds past here. This is Teams when I'm trying to log in that's doing this. If I manually go to Teams on the web it will work fine. I can come back 4 hours from now and this screen will still be showing the same thing.
As mentioned, ALL devices have this issue, it does not work on any computer, PC or Mac so it must be something with Microsoft 365. If it helps at all, I use Conditional Access and not security defaults.
- Hi, Were you able to find any solution ?
I am facing the exact same issue .Algorubal No I didn't, the only solution was to stop using USB keys and use the annoying Authenticator app. I also had to use conditional access to have it prompt me less frequently than I'd like just due to the inconvenience of the app (my phone is never with me or always dead). Very annoying, instead of fixing it, Microsoft would rather have people disable MFA. I haven't tried it in forever as we got rid of the USB keys forever ago due to this.
- If you want to use an authentication app solution but don't always have your phone with you there is a possible compromise solution. Instead of using Microsoft Authenticator you can use Google Authenticator (there is an option when registering the app). The reason I say this option can be used without a mobile is that instead of using the QR code with an authentication app you can use the QR code to program a programmable token (using an NFC programmer connected to your USB port on your PC, or using an NFC enabled mobile). Once programmed programmable tokens (such as SafeID /DIamond) will act direct replacement for the authentication app (as they are self-contained devices) and you will be able to authenticate even if you don't have your phone with you (or the phone battery is dead).
psychobunny83 same thing happens to me on the iPhone. All of the apps refer the login to Microsoft Authenticator which hangs forever when you click the security key option.
Everything works great from a browser though! 🙄
psychobunny83 i have the same problem. reproduced on macOS (m1) and iPadOS.
particularly frustrating on iPadOS, as the browser version doesn't work since they've got rid of Teams "classic" version. Safari browser support in Microsoft Teams - Microsoft Support. Even tried running in edge on the iPad but it's just safari underneath so same problem.
microsoft - your problem.
- Just reporting that im having the exact same issue here. Is there a fix for this please?
- Dear psychobunny83,
I wanted to let you know that I'm also facing the same problem you described with the USB security key MFA prompt not working on various devices and environments. I can confirm that the issue occurs on my NUC11PHKi7, VMware Horizon client on zero clients, and MacBook Air with an M1 chip.
It's frustrating to encounter this problem across different devices and platforms, indicating that it might be related to the Microsoft 365 environment or settings rather than a specific device or operating system issue. USB security key authentication for desktop applications like Teams and Outlook should ideally work seamlessly across different platforms, but it seems to encounter obstacles in our case.
I hope that together we can find a resolution to this USB security key MFA prompt issue. Let's keep each other updated on any progress we make or solutions we discover along the way.
Best regards,
Bryan EL ALAMIbelalami1242 has some solution been found, we also have same issues with office 2016 and Teams app
Anil Kumar Kundeti Have any solutions been found? Our company ordered these for all employees...and we are having the same trouble with the desktop apps
Did you apply to your Windows? If yes, register yet?
