Forum Discussion
FIDO2 as MFA token
Is it or will it be possible to use a FIDO2 key as an MFA token? (instead of passwordless signin) Thanks!
Hello Bart, my apologies for not fully understand your question recently. Too much going on to be honest. To answer your question though... it is planned.
”Azure AD now supports FIDO2 security keys in public preview. We’re working on allowing them to be used as a second factor as well (today they are used only first in sequence, but they satisfy MFA).”
”Azure AD now supports FIDO2 security keys in public preview. We’re working on allowing them to be used as a second factor as well (today they are used only first in sequence, but they satisfy MFA).”
ChristianBergstrom do you know the timeline of when FIDO2 keys will be able to be used as an MFA for Windows Hello for Business? Currently you can only use Facial recognition, fingerprint, pin, bluetooth device (e.g. cell phone), etc. The process for enabling these is via GPO and making sure you put in the correct code that matches the device you are using for MFA, however I can't find what that code would be for a FIDO2 key? Multi-factor Unlock - Windows security | Microsoft Docs
