How to enable two-step verification for your Microsoft account

Last update: 07/07/2025
Author Isaac
  • Two-step verification adds a crucial layer of security to Microsoft accounts.
  • Authentication requires an extra code on every login from new devices
  • There are multiple methods to receive the codes: SMS, alternative email or application

Microsoft account

Protect your Microsoft account It's essential in an increasingly digital world, where cyberattacks and credential theft are commonplace. One of the most effective measures you can take is to activate two-step verification, also known as two-factor authentication, which adds an additional layer of security every time you access your account from a new or unfamiliar device.

In this article, you will learn clearly and completely how to enable two-step verification in your Microsoft account, all the available configuration options, how to resolve common issues, and some extra tips to strengthen your security. Everything is explained step by step, with practical recommendations tailored to any user.

What is two-step verification and why should you turn it on?

La two step verification It is a security system that, in addition to your usual password, requests a second element to confirm your identity. This second step can be a code you receive on your phone, an alternate email message, or a notification in an authenticator app. This way, even if someone gets your password, they won't be able to access your account without that second factor.

Enabling two-step authentication in Microsoft is a smart decision because blocks possible unauthorized access and protects you from attacks like phishing or password theft. Additionally, some advanced Microsoft features, like OneDrive Personal Vault, require you to have this security measure active to protect your most sensitive files.

Steps to activate two-step verification on your Microsoft account

Follow this detailed guide if you want to activate two-step authentication on your personal Microsoft account (Outlook, Hotmail, OneDrive, Xbox, etc.):

  1. Access the official Microsoft website (for example, Outlook.com) and sign in with your usual username and password.
  2. Click the gear icon, usually located at the top right of the screen, to access your account settings.
  3. select the section Security o Security and privacyYou may need to re-enter your password for security reasons.
  4. Look for the option More security options and click Set up two-step verification.
  5. Choose your preferred method for receiving verification codes: SMS, alternate email, or an authentication app like Microsoft Authenticator.
  6. Follow the steps to confirm your identity using your chosen method. If you opt for an alternate phone number or email address, you'll receive a code that you'll need to enter to complete the activation.
  7. Microsoft will recommend that you create application-specific passwords If you're using older services or apps that don't support two-factor authentication, keep them in a safe place.
  Fix: “Missing media driver” error during clean install of Windows 10

Once this process is complete, every time you access your account from an untrusted device or application, you will need to enter the additional code that you will receive in the method you have configured.

How two-step authentication works on additional devices and services

La two-factor verification It also protects access from applications such as Outlook or other Microsoft-linked applications. Some applications do not support modern authentication, so it is necessary to use application passwords generated in the security section.

To create an app password:

  1. From section Security and privacy from your Microsoft account, go to More security configuration options.
  2. Look for the option Create a new app password and follow the instructions.
  3. Use the generated password when traditional authentication does not work.

Additionally, for work or school accounts (such as Microsoft Sign In ID), the two step verification can be mandatory depending on the organization's policies. In these cases, you can select the preferred method, although you may not be able to disable this feature.

Enable two-step authentication in OneDrive Personal Vault

OneDrive has a Personal Warehouse (Personal Vault), a secure cloud space for your most sensitive files. To use this feature, you must have two-step verification enabled. The process is similar to the one explained above, with a few additional details:

  • Access your OneDrive account and enter the Personal WarehouseYou'll be prompted to complete a second security step (such as SMS, email, or an authenticator app).
  • Access to Personal Vault will only be open for a limited time to ensure security. After that, you'll need to verify your identity again.
  • In the free version, you can only store up to three files. If you want more space, you'll need to upgrade your OneDrive plan.
  • Any actions on files (such as moving, deleting, or sharing) will also require two-factor authentication.
  Fix White Screen of Life on Windows 10

This space is ideal for keeping sensitive documents such as passports, ID cards, tickets, or important invoices safe.

What to do if you have problems receiving verification codes

You may occasionally have difficulty receiving the necessary codes. Here are some common solutions and common causes:

  • Blocking for unusual activity: Microsoft may temporarily block submissions if it detects suspicious behavior or excessive code requests to protect your account.
  • Location or traffic restrictions: There may be delays or blockages in SMS delivery in certain geographic areas or in countries with service limitations.
  • VOIP Numbers: Using virtual numbers, such as VOIP numbers, to receive codes is not recommended. A real mobile number is preferable.
  • Check your spam folder: Make sure emails from @accountprotection.microsoft.com haven't been filtered as spam and mark these messages as safe.
  • Problems with the messaging app: If your inbox is full or the app isn't working properly, your text messages may not arrive. Clear some space or reinstall the messaging app.
  • Phone settings: If you have blocked messages from unknown numbers, disable that option to receive codes correctly.

If after applying these solutions the problem persists, it is advisable to verify and update your security data in the section Safety information from your Microsoft account, making sure the number or alternate email is correct.

How to recover access if you lose your password or second factor

Losing access to your account can be very frustrating. Microsoft requires that you have at least two alternative contact methods (telephone, email, etc.) registered to be able to recover your account.

  1. Go to the Microsoft account recovery page.
  2. Request a password reset, which will be validated using two methods: a code via the authenticator app and another by email or phone.
  3. Follow the instructions to verify your identity and reset your password.
  How to Safely Save Game Progress on Android

To update your contact information, please log in to Security information and verification codes in your account and make the necessary changes.

How to add and manage new login methods

Microsoft allows add multiple forms of authentication to facilitate account access and recovery. To do so:

  1. Accede to Advanced security options in your account.
  2. Click on Add a new login or verification methodYou can select SMS, email, or an authenticator app.
  3. Enter the code you will receive to validate the new method.
  4. From that moment, you can choose your preferred method to access or recover your account.

You can also delete old methods or update your information if you change your phone or email address.

locked accounts
Related article:
Solution when your Microsoft account is blocked due to failed attempts: causes, steps, and practical tips