Either all users, or a specific group of users. Within Azure AD there is the Authentication method policy available, which is currently still in preview, that can be used to enable password-less authentication for users. The first step in enabling password-less sign-in with security keys, is configuring the authentication method. This is caused by the fact that the PassportForWork CSP setting is introduced in Windows 10 version 1903. Keep in mind that the best experience, for password-less sign-in with security keys, is on Windows 10 version 1903 or higher. I’ll end this post by showing the different methods to configure security keys a sign-in method on Windows 10, by using Microsoft Intune, and the end-user experience. I’ll start this post with the authentication method policy that should be configured in Azure AD, followed by the steps for a user to register a security key. My user will use a Yubikey 5 NFC security key. In this post I’ll show the required configurations that should be performed, by an administrator and the the user, to enable the user to use a security key as a sign-in method. Especially the Microsoft Intune configuration belongs on my blog. I know that a lot has been written about that subject already, but it’s that big that it still deserves a spot on my blog. This week is all about enabling password-less sign-in with security keys on Windows 10.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |