jroddev
Nevermind. I found it.
FYI to anyone noobing their way through Microsoft Authenticator install, and HAS NOT already set up sandboxed Google Play Services, read on.
Perhaps this is due to (1) egregious encroachment from one's employer re: mandatory apps required on a personal/non-provided device, which (2) must meet MS's requirements for Authenticator (no old devices, you see), so that (3) we can pay our post-tax earnings to purchase a device which helps us plead for the Byzantine plutocracy to accept our pitiful 'biometric identity' (4) so that they'll present the corporate teat that allows us to consume (5).... but i digress
In the end, I acquiesced, and decided to split my phone's personality by adding a new User/Profile. Graphene/Daniel, you have earned my donation, this is a great feature.
Here's what I did:
- create a new profile, for ONLY work / MS Authenticator --- (Settings / System / Multiple Users / Add User)
- when setting up new User, allow your app store (Aurora Store, in my case) to be installed in the new Work profile you're creating.
- go into the Work profile, set up how you prefer (navigation, defaults, etc),
- in your app store (Aurora for me), download and Install Microsoft Authenticator
- After installing MS Authenticator, pull/slide up the app tray, where all apps are visible
- click on the "Apps" app (black and white 3d box)
- within, click on Google Play, and Install
- pay attention to the Notifications - there are about 16 ways that Play doesn't like what you're doing (more proof of concept for GOS) - and solve the hurdles one by one
- After Play is installed in your Work Profile, go into Authenticator and follow your steps for registration/setup/login