How to Fix Cannot Create an App Password in Microsoft 365

Table of Contents

Before you begin

If your tenant was created on or after October 22, 2019, security defaults may be enabled in your tenant. To protect all of our users, security defaults are being rolled out to all new tenants at creation.

But Security Defaults does not support app password, so you should disable it then using Per-user MFA instead.

FeatureSecurity defaultsPer-user MFA
App notification through the Microsoft Authenticator🟢🟢
App code through Microsoft Authenticator or a third-party application🟢🟢
Call to phone🟢
Text message🟢
App password🟢

Note

Related: You can follow this post to disable the Security Defaults in Microsoft Entra ID.

No option to create an app password in Microsoft 365

Let’s say the users are logged in and they go to their Microsoft 365 Account where they can add multiple Authentication Methods. Shortcut for that is https://mysignins.microsoft.com/security-info

And they don’t get to create an App Password by default. To enable it, you need Enforce Users to use MFA.

How to Fix Cannot Create an App Password in Microsoft 365

Enforce Users to use MFA

Note

Information: App passwords are available only to users who have been enforced for per-user MFA. App passwords aren’t available to users who are enabled for Microsoft Entra multifactor authentication by a Conditional Access policy.

You can visit https://aka.ms/mfaportal to go to the legacy multi-factor authentication portal directly or:

1️⃣ Login into Microsoft admin center using global admin account.

2️⃣ Navigate to Users | Active users in the left nav.

3️⃣ In the active users section, select Multi-factor authentication link.

How to Fix Cannot Create an App Password in Microsoft 365

4️⃣ Now, in the multi-factor authentication page, you’ll see the users as whether they are using MFA or not. But, let click on the service settings first.

How to Fix Cannot Create an App Password in Microsoft 365

Be certain the option Allow users to create app passwords to sign in to non-browser apps is selected.

How to Fix Cannot Create an App Password in Microsoft 365

5️⃣ As you see below, Tom’s account is Enabled for Multi-Factor Authentication, but not Enforced. So, you have to click on Enforce button to enforce the MFA.

How to Fix Cannot Create an App Password in Microsoft 365

6️⃣ Now, click on enforce multi-factor auth button to confirm.

How to Fix Cannot Create an App Password in Microsoft 365

7️⃣ Once enforced, you’ll see the below status is updated on whoever this is enforced on.

How to Fix Cannot Create an App Password in Microsoft 365

Create App Passwords from My Sign-ins page

Now that we have enforced the User to use MFA, here’s how you can create App Passwords.

How to Fix Cannot Create an App Password in Microsoft 365

Comments (2)

Leave a Comment

Required fields are marked *