Microsoft yesterday announced an important milestone in the journey to eliminate passwords. Microsoft is updating Windows Hello to enable secure authentication using FIDO2 security keys.
These physical security keys allow users to carry their credential with themselves to authenticate to an Azure AD joined Windows 10 PC. Imagine a user walking up to any device belonging to his or her organization and log in without the need to enter a username and password or set-up Windows Hello beforehand. They make use of high-security, public-key cryptography to provide strong authentication. And the security key itself can be protected with an additional layer like fingerprint (integrated into the security key) or a PIN to be entered at the Windows sign-in. These security keys will be available in various form factors including USB security keys and NFC enabled smartcards.
Check out the video demos below.
You can join the waitlist to try out this feature today.