Page History
...
- For example, if Windows® Hello is enabled, optionally for Windows login, then users first might receive a popup window to login using the Windows Authenticator.
- Users can cancel the popup window if they want to register a Security Key that is not managed by Windows® Hello.
...
At this point in time users should have their Security Key readily available and connected. For example, if a USB stick is used then it should be connected to the computer that runs the browser with access to JOC Cockpit.
A follow-up popup window informs abut the fact that the brand and model of the Security Key will be displayed like this:
In the next step the user is asked to specify the PIN for access to the Security Key. If a PIN, biometric characteristics or other will be requested to access the Security Key depends on the nature of the Authenticator.
- The PIN or other characteristics are configured once during initial operation of a Security Key. The same input is required when the Security Key is used later on.
- If the Security Key is used for the first time then a dialog is added to specify and to confirm the PIN or other characteristics.
The next popup window asks the user for a gesture. This will happen
- if the FIDO Identity Service is configured for preferred or required user verification,
- if the user's Security Key is equipped for use of gestures such as touching a USB Stick.
With this step the registration request is completed.
...
- If Windows® Hello is used as an Authenticator for FIDO Passkeys then this option can be used.
- If a Security Key, for example a USB-Stick, is used then this option has to be selected.
Overview
Content Tools