Microsoft Accounts Now Support Passwordless Login via FIDO 2 Security Keys

Alfred Osborne
November 21, 2018

For those unfamiliar, FIDO2 authentication keys are standard-based devices that allow users to sign in to online services without a password. If you do lose your primary security key and you don't have a backup key, you may not be able to get back into your accounts-at least if the services that use FIDO2 keys don't compromise that security by offering recovery options with weaker security. I'm happy to share that Microsoft is the first Fortune 500 company to support password-less authentication using the the WebAuthn and FIDO2 specifications, and Microsoft Edge supports the widest array of authenticators compared to other major browsers. And its Microsoft Edge web browser now supports the widest array of authenticators compared to other major browsers, Microsoft says.

Enabling password-less logins is relatively easy, as you simply have to open up the Microsoft account website. Their objective was to give users a way to log into websites without needing any passwords-just a hardware token, such as a USB security key. "In fact, we dislike them so much that we've been busy at work trying to create a world without them-a world without passwords".

"This combination of ease of use, security and broad industry support is going to be transformational", stated Microsoft in an announcement.

Create a PIN (or enter an existing PIN if you have already created one). Then, navigate to Security "more security options". This generates a unique public-private key pair between your key and your Microsoft account, and only the key stores the private key.

Once your security key is configured, when you try to log into a Microsoft service, you will be prompted to press the button on your key to automatically authenticate you and log you in.

Almost 50 Schoolies And Toolies Charged Following First Weekend Of Celebrations
Overnight, police arrested nine schoolies on 11 offences which were mainly for public nuisance and drug possession. It comes as another baby girl, a four-month-old, died in a Brisbane hospital, with her death deemed suspicious .

House To Investigate Ivanka Trump's Use Of Personal Email For Official Business
The emails to White House aides and Cabinet officials were sent from a private domain she shares with husband Jared Kushner. They weren't deleted like Hillary Clinton ", Trump said, adding: "What Ivanka did, it's all in the presidential records.

Theresa May tries to calm United Kingdom businesses' fears over immigration and trade
So far more than 20 lawmakers have said publicly that they have submitted letters, but the total number sent is not known. Anti-Brexit demonstrators protest outside the Houses of Parliament in London, Britain, November 19, 2018.

You will be redirected to the setup experience where you will insert or tap your key.

Take the follow-up action by touching your security key.

The company said on Tuesday that it now supports a form of Windows login using a USB key that contains unique encrypted information and which bypasses the need for a password-or even an account name.

At the Additional Security Options page, scroll down and under the section "Windows Hello and security keys" click on the Set up a security key link.

Other reports by

Discuss This Article

FOLLOW OUR NEWSPAPER