Azure AD support for FIDO2 security keys in hybrid environments – Public preview [EN]
Today, Microsoft announced the public preview of Azure AD support for FIDO2 security keys in hybrid environments.
Users can now use FIDO2 security keys to sign in to their Hybrid Azure AD joined Windows 10 devices and get seamless sign-in to their on-premises and cloud resources.
With the expansion of FIDO2 support to Hybrid environments, we offer seamless sign-in to Windows devices and virtually unphishable access to on-premises and cloud resources, using a strong hardware-backed public/private-key credential.
Prerequisites
- Windows Server patch for Domain controllers (Server 2016/Server 2019).
- Windows Insider Builds 18945 or later for PCs.
- Version 1.4.32.0 or later of Azure AD Connect.
Integration
- Enable security keys as a passwordless authentication method for your tenant and have your users provision their FIDO2 security keys.
For additional information, see:
– Enable passwordless security key sign-in to on-premises resources with Azure AD
– User registration and management of FIDO2 security keys
- Ensure that Windows devices are enabled to use FIDO2 security keys to sign in.
For additional information, see:
– Enable passwordless security key sign-in to Windows 10 devices with Azure AD
- Configure components required to sign in to your HAADJ devices as well as for single sign-on (SSO) to on-premises and cloud resources.
For additional information, see:
– Enable passwordless security key sign-in to on-premises resources with Azure Active Directory (preview)
Security keys
See the full listing of tested compatible devices.
No Comments