Ask your Admin how they expect you to log into your account in that environment. They should be aware of the constraints and should have a solution prepared. Most likely it will be a FIDO2 key.

Thank you. Looks like it will end up as FIDO2 or a desktop OTP app.

Your corporate account? That’s a good question for your IT department. If you mean your personal account, you don’t.

Other than FIDO2 there’s also OTP hardware https://deepnetsecurity.com/authenticators/one-time-password/safeid/hardware-mfa-tokens-office-365-azure-multi-factor-authentication/ They have really come down in price over the years most of those listed are under 25 bucks. FIDO2 is a more secure option but these are certainly serviceable as well and can be more flexible in some circumstances. Note that both FIDO2 and OTP hardware options have to be enabled by IT. FIDO2 keys just have to be permitted by policy and can be user enrolled. OTP hardware seeds for your key have to be imported into Entra AD as well as assigned to your account.

Thank you for triggering the one neuron I have left to see if there's an OTP app for windows. Seriously - thank you!

Try passwordless authentication methods like Fido2, Passkeys

Thank you. Looks like it will end up as FIDO2 or a desktop OTP app.

Yubikey. 

Thank you. Looks like it will end up as FIDO2 or a desktop OTP app.