[garciansmith]

"'Microsoft Authenticator is not officially supported on GrapheneOS and Entra accounts may be impacted in the future on devices running GrapheneOS that are detected as rooted,' a Microsoft spokesperson said."

Doesn't that imply it'll run on GrapheneOS unless the phone is also rooted (and by default it's not)? The spokesperson might be using the term "rooted" incorrectly though?

[iggldiggl]

I poked at the app, which surprisingly enough isn't even obfuscated, and as far as I can tell, it's mainly relying on Play Integrity's verdict. I didn't investigate it in detail though, so I don't know absolutely sure if that's really all or whether they're also running some additional custom checks, and I also don't know which integrity level they're requiring.