About two-step verification

Two-step verification helps protect you by making it more difficult for someone else to sign in to your Microsoft account. It uses two different forms of identity: your password, and a contact method (also known as security info). Even if someone else finds your password, they'll be stopped if they don't have access to your security info. This is also why it's important to use different passwords for all your accounts.

You set up two-step verification with an email address, phone number, or authenticator app. When you sign in on a new device or from a new location, we'll send you a security code to enter on the sign-in page.

If you turn on two-step verification, you’ll get a security code to your email, phone, or authenticator app every time you sign in on a device that isn't trusted. When it’s turned off, you will only have to verify your identity with security codes periodically, when there might be a risk to your account security.

Important!

If you turn on two-step verification, you will always need two forms of identification. This means that if you forget your password, you need two contact methods. Or if you lose your contact method, just your password won't get you back into your account. For that reason, we strongly recommend you keep three pieces of security info on your account, just in case.

To turn two-step verification on or off

Go to the Security settings page, and sign in with your Microsoft account.
Under Two-step verification, choose Set up two-step verification to turn it on, or choose Turn off two-step verification to turn it off.
Follow the instructions.

Show all

Where you can't use security codes, use app passwords

Some apps (like the mail apps on some phones) or devices (like the Xbox 360) can't use regular security codes. If you see an “incorrect password” error on an app or device after you turn on two-step verification, but you’re sure your password was correct, that means you'll need an app password for that app or device.

To get an app password

Go to the Security settings page, and sign in with your Microsoft account.
Under App passwords, click Create a new app password. The new, unique app password will appear on your screen.
In the app or device you’re trying to use, enter that new app password instead of your regular password.

App passwords are only necessary if you use two-step verification. If you don't see the App passwords section on the Security settings page, you may not have two-step verification turned on.

Learn more

Need more help?

Email Microsoft support

Chat with Microsoft support

Properties

Article ID: 12408 - Last Review: Jun 22, 2016 - Revision: 9

Feedback

Was this information helpful?