You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/ide/work-with-multi-factor-authentication.md
+42-4Lines changed: 42 additions & 4 deletions
Original file line number
Diff line number
Diff line change
@@ -1,7 +1,7 @@
1
1
---
2
2
title: Multi-factor authentication with Visual Studio sign-ins
3
3
titleSuffix: ""
4
-
ms.date: 05/16/2023
4
+
ms.date: 08/24/2023
5
5
ms.topic: how-to
6
6
description: "Learn how to use Visual Studio with accounts that require multi-factor authentication (MFA)."
7
7
author: anandmeg
@@ -10,7 +10,6 @@ manager: jmartens
10
10
ms.technology: vs-ide-general
11
11
ms.workload:
12
12
- multiple
13
-
monikerRange: ">=vs-2019"
14
13
---
15
14
16
15
# Sign in to Visual Studio with accounts that require multi-factor authentication (MFA)
@@ -31,21 +30,60 @@ Versions of Visual Studio prior to 16.6 may have degraded authentication experie
31
30
These issues can cause your instance of Visual Studio to prompt reauthentication multiple times per day. You may have to re-enter your credentials for previously authenticated tenants, even during the course of the same Visual Studio session.
32
31
33
32
## Using Visual Studio with MFA policies
34
-
In the 16.6 release, we added new capabilities to Visual Studio 2019 that streamline how users can access resources secured via CA policies such as MFA. To use this enhanced workflow, you'll need to opt into using your system's default web browser as the mechanism to add and reauthenticate Visual Studio accounts.
33
+
34
+
::: moniker range="<=vs-2019"
35
+
36
+
You can access resources secured via CA policies such as MFA in Visual Studio. To use this enhanced workflow, you'll need to opt into using your system's default web browser as the mechanism to add and reauthenticate Visual Studio accounts.
37
+
38
+
::: moniker-end
39
+
40
+
::: moniker range="=vs-2022"
41
+
42
+
You can access resources secured via CA policies such as MFA in Visual Studio. To use this enhanced workflow, you'll need to opt into using your system's default web browser or the Windows authentication broker (available in [Visual Studio version 17.5](/visualstudio/releases/2022/release-notes-v17.5), but we recommend using [Visual Studio version 17.7](/visualstudio/releases/2022/release-notes) for an optimal experience) as the mechanism to add and reauthenticate Visual Studio accounts.
43
+
44
+
::: moniker-end
35
45
36
46
> [!WARNING]
37
47
> Not using this workflow could trigger a degraded experience resulting in multiple additional authentication prompts when adding or reauthenticating Visual Studio accounts.
38
48
49
+
::: moniker range="=vs-2022"
50
+
51
+
### Enabling Windows authentication broker
52
+
53
+
>[!NOTE]
54
+
>Web Account Manager(WAM) is only available on Windows 10 and above, as well as Windows Server 2019 and above.
55
+
56
+
To enable this workflow, go to Visual Studio's Options dialog **(Tools > Options…)**, select the **Accounts** tab, and then select **Windows authentication broker** from the **Add and reauthenticate accounts using:** dropdown.
57
+
58
+
:::image type="content" source="media/vs-2022/windows-authentication-broker.png" alt-text="Select web authentication broker from the dropdown.":::
59
+
60
+
Windows authentication broker uses [Web Account Manager(WAM)](/entra/msal/dotnet/acquiring-tokens/desktop-mobile/wam) and offers many benefits such as security, improved MFA support, and seamless integration between accounts added to the OS and Visual Studio.
61
+
62
+
::: moniker-end
63
+
39
64
### Enabling system web browser
40
65
41
66
> [!NOTE]
42
67
> For the best experience, we recommend that you clear your system’s default web browser data before proceeding with this workflow. Additionally, if you have Work or School accounts in your Windows 10 Settings under **Access work or school**, please verify that they are properly authenticated.
43
68
44
-
To enable this workflow, go to Visual Studio's Options dialog **(Tools > Options…)**, select the **Accounts** tab and pick**System web browser**under the **Add and reauthenticate accounts using:** dropdown.
69
+
To enable this workflow, go to Visual Studio's Options dialog **(Tools > Options…)**, select the **Accounts** tab and select**System web browser**from the **Add and reauthenticate accounts using:** dropdown.
45
70
46
71
:::image type="content" source="media/vs-2022/select-system-web-browser.png" alt-text="Select system web browser from the menu.":::
47
72
48
73
### Sign into additional accounts with MFA policies
74
+
75
+
::: moniker range="=vs-2022"
76
+
77
+
**Windows authentication broker**
78
+
79
+
Once the Windows authentication broker workflow is enabled, you can sign in or add accounts to Visual Studio as you normally would, via the Account Settings dialog **(File > Account Settings…)**. Web Account Manager(WAM) simplifies the sign in experience by allowing users to log in with accounts known to Windows, such as the account signed into your Windows session.
80
+
81
+
:::image type="content" source="media/vs-2022/add-personalization-account-web-account-manager.png" alt-text="Add additional accounts to Visual Studio with the Windows authentication broker workflow.":::
82
+
83
+
**System web browser**
84
+
85
+
::: moniker-end
86
+
49
87
Once the system web browser workflow is enabled, you can sign in or add accounts to Visual Studio as you normally would, via the Account Settings dialog **(File > Account Settings…)**.
50
88
</br>
51
89
:::image type="content" source="media/vs-2022/add-personalization-account.png" alt-text="Add a new personalization account to Visual Studio." border="false":::
0 commit comments