Microsoft Authenticator gets jailbreak and root detection
Microsoft announces that the Authenticator app will detect jailbreaks and root access. Entra access will then be deleted.
(Image: Microsoft / heise medien)
Microsoft is presenting an updated timeline for planned jailbreak and root detection for the Microsoft Authenticator app. The Authenticator is intended to specifically protect Entra ID accesses and delete them from recognized rooted devices.
In the Microsoft 365 Message Center, the developers have updated post MC1179154 (Copy at mc.merill.net). Now, at the end of February, the Microsoft Authenticator app on Android and iOS is supposed to detect whether devices have been jailbroken or rooted. Microsoft intends to block the use of Entra accesses on such devices. This will happen in phases: first, the Authenticator warns (Warning Mode), then it blocks usage (Blocking Mode), and finally, it deletes the access credentials (Wipe Mode).
“This security feature is automatic with no opt-out,” Microsoft explains. Users who do not use jailbroken or rooted devices are not affected. Admins do not need to activate any configuration. Microsoft advises IT managers to inform users and the helpdesk about this upcoming change.
Jailbreak and Root Detection: Timeline
On Android, the global rollout is scheduled to begin at the end of February 2026, i.e., now. Microsoft aims to complete the action by mid-year -- original plans foresaw April 2026. For iOS, distribution begins in April 2026, which was previously planned for March. Here too, Microsoft aims to complete the process by mid-year, also postponed from the initially planned April. The individual phases of warning, blocking, and deletion are to start approximately one month apart.
Videos by heise
Mid-last year, Microsoft trimmed down the Authenticator app. It sometimes also served as a password manager. The function has now moved to the Edge web browser and is still called “Autofill” there.
(dmk)
