Sign in to fsckmsft with email or SSO, enable two-factor authentication, manage active sessions, and review all security settings to keep your account protected.
Your fsckmsft account gives you access to your organization’s projects, integrations, and data — so keeping it secure matters. This page covers how to sign in, how to enable two-factor authentication (2FA), how to manage the devices currently logged into your account, and how SSO fits into the picture. Complete the 2FA setup the first time you sign in; it takes under two minutes and dramatically reduces the risk of unauthorized access.
Type your email address and password, then click Sign in.
3
Complete 2FA (if enabled)
If you’ve set up two-factor authentication, fsckmsft prompts you for a verification code after your password. Open your authenticator app, enter the six-digit code, and click Verify. The code refreshes every 30 seconds — enter it promptly.
On a trusted personal device, check Remember this device for 30 days before clicking Sign in. This skips the 2FA prompt on that device for the next 30 days while keeping 2FA active everywhere else.
If your organization has configured SSO, sign in through your identity provider rather than entering a separate fsckmsft password.
1
Click 'Sign in with SSO'
On the fsckmsft login page, click Sign in with SSO beneath the password field.
2
Enter your email or workspace URL
Type your work email address or your workspace URL (e.g., your-company.fsckmsft.org). fsckmsft identifies your identity provider and redirects you.
3
Authenticate with your identity provider
Sign in using your company credentials on your provider’s login page (Okta, Google, Microsoft Entra, etc.). After a successful authentication, you’re redirected back into fsckmsft automatically.
SSO accounts do not have a standalone fsckmsft password. If SSO is unavailable or misconfigured, contact your IT administrator — fsckmsft support cannot bypass your organization’s identity provider.
If your workspace allows social login, you can sign in with an existing Google or Microsoft account instead of a separate password.
1
Click the provider button
On the fsckmsft login page, click Continue with Google or Continue with Microsoft.
2
Choose your account
Select your work account from the account picker. Make sure you choose the same email address you used when you created your fsckmsft account.
3
Authorize the connection
On your first OAuth login, you’ll see an authorization screen listing the permissions fsckmsft requests. Click Allow to proceed. Subsequent logins skip this step.
OAuth sign-in is only available if your workspace admin has enabled it. If you don’t see the Google or Microsoft buttons, your workspace requires email/password or SSO.
Below the password field, click the Forgot password? link.
2
Enter your email address
Type the email address associated with your account and click Send reset link. fsckmsft sends a password reset email within a minute.
3
Click the reset link and set a new password
Open the email and click Reset my password. Enter and confirm your new password, then click Save. Reset links expire after one hour — request a new one if yours has lapsed.
Two-factor authentication adds a second verification step — a time-sensitive code from your phone — so that a stolen password alone can’t unlock your account. Enable it as soon as your account is created.
Click your avatar in the bottom-left corner, select Settings, then navigate to Security → Two-factor authentication.
2
Click 'Enable 2FA'
Click the Enable two-factor authentication button. fsckmsft presents a QR code and a manual setup key.
3
Scan the QR code with your authenticator app
Open an authenticator app on your phone — Google Authenticator, Authy, 1Password, or Microsoft Authenticator all work. Tap the option to add a new account, then scan the QR code displayed on screen.If you can’t scan the QR code, tap Enter setup key manually in your app and type the alphanumeric key shown beneath the QR code on the fsckmsft setup screen.
4
Enter the confirmation code
Your authenticator app immediately shows a six-digit code for the fsckmsft entry you just added. Type that code into the Verification code field on the setup screen and click Verify and enable.
5
Save your backup codes
After verifying, fsckmsft displays 10 single-use backup codes. Download or print them now and store them somewhere safe — a password manager, a printed sheet in a secure location, or an encrypted notes app.
Store your backup codes before you close this screen. fsckmsft only shows them once. If you lose access to your authenticator app and don’t have your backup codes, you will be locked out of your account. Account recovery without backup codes requires identity verification through fsckmsft support and may take several business days.
If you’ve lost access to your authenticator app, use a backup code to sign in:
On the 2FA prompt screen, click Use a backup code below the verification code field.
Enter one of your saved backup codes.
Click Verify. The code is consumed — each backup code works only once.
After signing in with a backup code, go immediately to Settings → Security → Two-factor authentication and either restore your authenticator app or set up 2FA again to generate a new set of backup codes.
Disabling 2FA is not recommended. Only do this if you’re switching authenticator apps — and in that case, re-enable 2FA with the new app immediately after disabling it.
To disable 2FA, go to Settings → Security → Two-factor authentication and click Disable 2FA. You’ll need to confirm your current password and enter a valid 2FA code or backup code to proceed.
Every device or browser that is currently signed in to your account appears in your Active sessions list. Review this list regularly to spot any access you don’t recognize.
1
Open the Sessions panel
Go to Settings → Security → Active sessions. fsckmsft lists every active session, showing the device type, browser, approximate location (based on IP), and the time of the last activity.
2
Review each session
Identify any sessions you don’t recognize — an unfamiliar city, device, or browser is a red flag. Your current session is labeled This device.
3
Revoke sessions you don't recognize
Click Revoke next to any session you want to end. That device is immediately signed out and must re-authenticate to access fsckmsft. To end all other sessions at once, click Revoke all other sessions.
If you see a session from a location you don’t recognize, revoke it immediately, then change your password and verify that 2FA is enabled. If you suspect your account has been compromised, contact fsckmsft support right away.
Workspace Owners and Admins can require all members to sign in through an identity provider, eliminating per-user password management and enforcing your organization’s authentication policies.To configure SSO for your workspace:
Go to Workspace Settings → Security → Single Sign-On.
Click Configure SSO and select your identity provider (Okta, Google Workspace, Microsoft Entra ID, or a custom SAML 2.0 / OIDC provider).
Follow the provider-specific setup instructions — you’ll need to create a fsckmsft application in your identity provider console and paste the metadata URL or certificate into fsckmsft.
Click Test SSO connection to verify the setup before enabling it.
Set the SSO enforcement toggle to Required to prevent members from signing in with email/password.
Before enforcing SSO for all members, make sure your identity provider is fully configured and that you’ve tested sign-in successfully. Enabling enforcement immediately blocks any member without a valid identity provider account from accessing the workspace.
