Microsoft Authenticator for iOS: Cloud Backups Arrive, Ditching Personal Accounts
Microsoft is preparing a significant update for users of its Authenticator app on iOS devices. Beginning in September, a new backup system will roll out, eliminating the need to sign in with a personal Microsoft account. The changes primarily concern the storage of TOTP codes (time-based one-time passwords) and account names, significantly streamlining the app’s use in corporate environments.
Until now, creating a backup in Microsoft Authenticator on iOS required logging into a personal Microsoft account, even if the app was used solely for work or school accounts.
This arrangement caused inconvenience in organizations with strict separation between personal and corporate data. The new system removes that requirement entirely—backups will now be handled via iCloud, utilizing the Apple ID already configured on the device. If the device is managed by an organization and uses a Managed Apple ID, it will take precedence over a personal Apple ID.
The updated feature will begin rolling out in September and is expected to reach all users by early October 2025. A notification within the app will alert users of the transition to the new backup system.
Only users running iOS version 16.0 or higher, with iCloud and iCloud Keychain enabled, will be eligible for the update. Once installed, TOTP secrets and account names will be automatically backed up to the cloud and made available when restoring the app on a new device using the same Apple ID.
Microsoft emphasizes that only TOTP secrets will be backed up—no other data or passwords will be included in the backup. If desired, users may disable this functionality via the standard iCloud settings on their device. No action is required from administrators or users—the system will activate automatically.
This change follows Microsoft’s recent decision to remove the password autofill and management feature from Authenticator. Against that backdrop, the new backup scheme represents a move toward more secure and adaptable integration of the app within enterprise IT ecosystems.
