How to Secure Your Microsoft Account

Your Microsoft account protects Outlook email, OneDrive files, Windows login, and Xbox. Turn on two-step verification and review connected apps.

In this guide (5 steps):

1.Sign in and view your security dashboard
2.Turn on Two-step verification
3.Review recent sign-in activity
4.Check connected apps and devices
5.Update your recovery information

Sign in and view your security dashboard

~15s

Go to account.microsoft.com/security in any browser. Sign in with your Microsoft email and password. The Security page shows your account health at a glance.

Turn on Two-step verification

~17s

On the Security page, click "Two-step verification" → "Turn on." Choose your preferred verification method: Microsoft Authenticator app, text message, or email code. Follow the on-screen setup.

Quick Tip

Download the Microsoft Authenticator app for the best experience — you get a one-tap approval instead of having to type a code.

Review recent sign-in activity

~15s

On the Security page, click "Review recent activity." A list shows recent sign-ins with location and device. Click "This was me" to confirm known activity, or "This wasn't me" if you see unrecognized access.

Check connected apps and devices

~15s

On your Microsoft Account dashboard, click "Devices" to see all devices signed in. Click any unfamiliar device → "Remove." Click "Privacy" → "Apps & services" to see which third-party apps have access.

Update your recovery information

~20s

On the Security page → "Update your security info," make sure your phone number and backup email are current. These are used to verify your identity if you ever need to reset your password.

Warning

Microsoft support will never call you to tell you your account is compromised. Unsolicited calls about your Microsoft account are a known scam — hang up.

You Did It!

You've completed: How to Secure Your Microsoft Account

Need more help? Get Expert Help from a TekSure Tech

Your Microsoft account (the one associated with an @outlook.com, @hotmail.com, or @live.com email address, or your work/school account) connects many services: Outlook email, OneDrive cloud storage, Microsoft 365 (Word, Excel, PowerPoint), Windows login, Skype, and Xbox.

If someone gains access to your Microsoft account, they can read your emails, access files you store in OneDrive, and potentially access your Windows computer if it is signed in.

Microsoft Security Check

: Visit account.microsoft.com/security for a one-stop security overview. The page shows your recent activity, signed-in devices, and security settings.

Two-step verification

: The most effective protection. When enabled, signing in from a new device requires a code from the Microsoft Authenticator app, a text message, or a code from your email. Enable it at account.microsoft.com/security → Two-step verification.

Microsoft Authenticator app

: Microsoft's own app (free on iPhone and Android) is the recommended way to verify sign-ins. Instead of a text code, you get a simple approval notification — tap "Approve" and you are in.

Checking recent activity

: At account.microsoft.com/security, you can view every recent sign-in including the device type, location, and time. If anything looks suspicious (a country you never visited, a device you do not own), click "I don't recognize this activity" to start the account recovery process.

Rate this guide

How helpful was this guide?

microsoft account

outlook security

two-step verification

onedrive security

windows security