Hi @Mlawton40 , You can now use FIDO keys to do PIN reset, so no
passwords needed there. Being able to use a temporary access pass there
is also on the roadmap. As for removing password entry from Windows,
we're still a ways from making that a smooth, seamless experience, but
that's why we call this...
@Chris_Clark_Netrix - you can issue Temporary Access Pass for cloud and
federated accounts. If a federated user has a valid pass, they will be
able to use it for cloud authentication and register a passwordless
method. From that point on, the user can be federated but if using
passwordless method - ...
Sorry, I phrased that wrong. @Inbar Cizer Kobrinsky Does this only work
for Azure AD cloud only accounts or can it work with AD Synced accounts
as well?
@Emin Huseynov - Yes, if the user have signed in to Azure AD with
Temporary Access Pass, in the Security Info page they can go and
register FIDO2 key. Please see more details here: Configure a Temporary
Access Pass in Azure AD to register Passwordless authentication methods
| Microsoft Docs
Hi @Chris_Clark_Netrix - If I understand correctly you are asking about
scoping to users and groups - the answer is that you can scope the
policy to any group.
Latest Comments