Passwordless setup for environment with only desktops

Question

Hi,&nbsp;We have a requirement to build a restricted network infrastructure with only desktops for users. The users will not be provided or allowed to use any other device like laptop, mobile, etc. Plus, they will not have email access and the desktops will be shared between the users.&nbsp;Our objective is implement passwordless authentication for user authentication. The desktops could either be Microsoft Entra ID joined or hybrid joined.&nbsp;FIDO2 security keyAs per the link below, the 1st requirement for&nbsp;FIDO2 security key&nbsp;based passwordless authentication is Multi-Factor Authentication. MFA cannot be met because the users are only provisioned with desktops.https://learn.microsoft.com/en-us/entra/identity/authentication/howto-authentication-passwordless-se...&nbsp;Windows Hello for BusinessIt appears from the below link that&nbsp;Windows Hello for Business&nbsp;is not an option either because the users would use shared desktops.https://learn.microsoft.com/en-us/entra/identity/authentication/concept-authentication-passwordless&nbsp;Can&nbsp;Temporary Access Pass (TAP) be used in a restricted scenario like this OR am I missing some thing?&nbsp;&nbsp;Thanks!James

kidd_ip · Answer

jameswonderguy&nbsp;
&nbsp;
I thought&nbsp;FIDO key should be strong enough for the case

Forum Discussion

Passwordless setup for environment with only desktops

1 Reply

Resources