Go to the Security basics page and sign in with your Microsoft account. When you sign in on a new device or from a new location, we'll send you a security code to enter on the sign-in page. For more info about the authenticator app, see How to use the Microsoft Authenticator app. Two-step verification begins with an email address (we recommend two different email addresses, the one you normally use, and one as a backup just in case), a phone number, or an authenticator app. When two-step verification is turned off, you will only have to verify your identity with security codes periodically, when there might be a risk to your account security.
If you turn on two-step verification, you’ll get a security code to your email, phone, or authenticator app every time you sign in on a device that isn't trusted. What happens when you turn on two-step verification For that reason, we strongly recommend you have three pieces of security info associated with your account, just in case. Or if you lose your contact method, your password alone won't get you back into your account-and it can take you 30 days to regain access. This means that if you forget your password, you need two contact methods.
Important: If you turn on two-step verification, you will always need two forms of identification.
