---
title: Configuring authenticator app authentication
description: You can use any third-party authenticator app that can generate a standard time-based one-time passcode (TOTP) for multi-factor authentication (MFA). Examples include Google Authenticator or Microsoft Authenticator.
component: pingone
page_id: pingone:strong_authentication_mfa:p1_strong_auth_configuring_authenticator_app
canonical_url: https://docs.pingidentity.com/pingone/strong_authentication_mfa/p1_strong_auth_configuring_authenticator_app.html
revdate: September 5, 2024
section_ids:
  before-you-begin: Before you begin
  about-this-task: About this task
  steps: Steps
---

# Configuring authenticator app authentication

You can use any third-party authenticator app that can generate a standard time-based one-time passcode (TOTP) for multi-factor authentication (MFA) *(tooltip: \<div class="paragraph">
\<p>An electronic authentication method where a user is granted access only after presenting two or more verification factors for authentication.\</p>
\</div>)*. Examples include Google Authenticator or Microsoft Authenticator.

## Before you begin

To add an authenticator app as an authentication method, you need:

* A PingOne environment. The authentication policy should include the relevant MFA policy.

## About this task

External authenticator apps are a useful solution in cases such as:

* A Workforce organization that cannot allow the PingID mobile app on their devices, as PingID must be added to the allow list.

* An organization that wants to use a single authenticator app and has users that must authenticate to multiple organizations.

Users can use an authenticator app to access an account or application through the web, VPN, Mac login, or SSH. When authenticator app authentication is enabled, users can download the authenticator app of their choice and pair it with their PingOne account. Users can pair more than one authenticator app with their account.

## Steps

* Configure the authenticator app authentication method in the MFA policy. Learn more in [MFA policy](p1_creating_an_mfa_policy_for_strong_auth.html).