It’s understandable that your staff may have concerns about installing the Microsoft Authenticator app, as people may be hesitant to allow new software to access their personal devices. In order to address these concerns, it may be helpful to provide clear and transparent information about how the app will be used and what data it will have access to. You could also consider offering training or support to help staff feel more comfortable with using the app.
One approach you could take is to provide a clear and concise explanation of the security benefits of using the Microsoft Authenticator app for two-factor authentication (2FA). Emphasizing that the app helps to protect their accounts and personal information from unauthorized access may help to alleviate concerns about privacy. You could also highlight any measures that have been put in place to ensure the security of the app, such as encryption of data or regular security updates.
Alternatively, you may want to consider using a hardware token like the YubiKey for 2FA.
Using a hardware token like the YubiKey for MFA can provide several benefits compared to using a software-based authenticator like the Microsoft Authenticator app. For example:
1) A hardware token can be more secure than a software-based authenticator, as it can’t be hacked or compromised in the same way that a phone or computer can.
2) A hardware token can be easier to use than a software-based authenticator, as it doesn’t require any additional steps or inputs beyond inserting the token into a USB port or tapping it to a compatible device.
3) A hardware token can be more convenient than a software-based authenticator, as it doesn’t require a phone or internet connection to work. This can be particularly useful in situations where a phone signal is weak or unavailable.
4) A hardware token does not depend on battery meaning that is always available, and its lack of electronics make it more durable and reliable.
Overall, using a hardware token like the YubiKey for passwordless authentication can provide a more secure, convenient, and user-friendly solution than using a software-based authenticator. This may make it a more appealing option for staff who are hesitant to use the Microsoft Authenticator app.
Ultimately, the key to resolving this situation may be effective communication and transparent information-sharing. By providing clear explanations and addressing any concerns that staff may have, you can help to build trust and encourage widespread adoption of whichever method you choose to implement.