Microsoft
MicrosoftHello LijuV ,
I am trying to set up a Proof of concept for this for our organization using my lab. I have (2) 2016 domain controllers fully patched, Windows 11 23H2 client laptop, and am using Yubikey 5 NFC. I have followed this guide to a T using the GPO setup to set security key login (I don't have access to Intune). I've been racking my brain on trying to get this to work and am getting errors at sign-in when using the yubikey. The error I am getting is "Your account could not be verified, error 0xc000006d, 0x0". Checking the WebAuthN logs, I see event log 1005 that shows an error for "Incorrect username or password". I've tested the key for logging into other apps through the browser and have 0 issues. I've made sure the account I am using is not part of the privileged groups and that the kerberos server for Azure/Entra is setup on my domain. Ensured the Yubikey could be read in Device Manager as FIDO compliant device, etc.
At this point, I am wondering if there is something in my lab setup that is not compatible with this configuration but am not sure where to look as I have checked to ensure I have all of the prerequisites configured in my lab. Maybe you know something about this and can show me where else to look.
