Can I use a Fido2 Key for 2FA with EOP1?

HCHTech said:
Since we can't / don't want to use AzureAD, I'm worried about poking this bear, frankly
Click to expand...
There’s no bear to poke as AAD is very limited on a EO account. Don’t panic. You shouldn’t need the software with this method and you want it enabled for everyone as using a key is safer and less hassles than the app.
 
This is now in-place and working. The only stumbling block I ran into was that the employee in question had to already be logged in using a different MFA method in order to "create a new method" and select the FIDO key option. Given no other options, we enabled the phone call choice and entered their direct dial # on the client's phone system. Once they logged in and authenticated this way, we could go to the employee's account in 365, select security, select add-another-method and then choose 'security key'. No software was required, but the inserted key had to be touched as part of the login. It wasn't a fingerprint key, just the most-inexpensive model, which must have used NFC.

The next time someone asks for this, it will be easy. This time, not so much.
 
You must log in or register to reply here.

Similar threads

thecomputerguy
Can I use a UDM-Pro as a controller ONLY?
Replies
1
Views
591
phaZed
phaZed
YeOldeStonecat
Lenovos new ThinkPad X9 series
Replies
14
Views
2K
timeshifter
timeshifter
britechguy
Clean Reinstall of Windows 11 on an LG Gram 16 Laptop
Replies
3
Views
5K
Sky-Knight
Sky-Knight
timeshifter
How can I run PFS First Choice on a new Windows 10 machine
Replies
5
Views
1K
Blues
Blues
sapphirescales
Preparing for the worst with Windows 11...how do I use sysprep and restore client data?
5 6 7
Replies
139
Views
29K
fabs
fabs
Back
Top