3.8 FIDO2

The FIDO2 method facilitates you to use any FIDO compliant device either in-built with the system or connected through USB to register and authenticate to the web environment. When you try to authenticate, FIDO compliant device and user gesture, such as tap on token and swipe fingerprint on reader are validated.

NOTE:If the FIDO2 method is enrolled using the Windows Hello in Microsoft Edge 17 or earlier supported browser versions then you must authenticate using the same browser. After upgrading to the latest version of Edge that supports the FIDO 2.0 standards, you must re-enroll the FIDO2 method.

3.8.1 Enrolling the FIDO2 Authenticator

  1. Click the Add icon in Your Enrolled Single Methods for sign in on the Authentication Methods page.

  2. Click the FIDO2 icon in Available Methods for Enrollment.

  3. (Optional) Specify the Display Name.

  4. Connect the device that complies with FIDO standards.

  5. Click Detect Device.

    A message Waiting for Web Authentication data is displayed.

  6. Perform the action associated to the device.

    For example, if you use the FIDO2 device, connect it to the computer, set the pin, and touch the device when you see a flash. A message Enrollment is complete is displayed.

  7. Click Save.

    A message The "FIDO2" authenticator has been saved is displayed.

3.8.2 Testing the FIDO2 Authenticator

  1. Click the FIDO2 icon in Your Enrolled Single Methods for sign in.

  2. Click Test Method.

    A message Waiting for Web Authentication data is displayed.

  3. Perform the action associated to the enrolled device.

    A message Test successful is displayed.