![]() ![]() IE 11 is not a modern web browser and will never support WebAuthn (a core component of FIDO2), it is a deprecated web browser. Just use the latest version of any of these and you will be fine:ĭO NOT use IE 11. ![]() There is a website tracking this capability at. I have covered this in past articles down to specific version numbers of each web browser. FIDO2 is only supported on modern web browsers so if you want to use your key in-session, the session must have a modern web browser available. You must use a modern web browser that supports WebAuthn (and therefore FIDO2) within this OS you have the VDA installed on.Windows 10 Enterprise multi-session in Azure (part of your Microsoft WVD entitlement). ![]() Citrix VDA installed on any of these OSes I have tested so far:.How to use your FIDO2 key over a remoting protocol:.Since then I’ve received a lot of questions from Microsoft, Citrix, and FIDO2 key manufacturer employees on this technique so I thought I’d do a writeup to benefit everyone and the community. You want to use another convenient Azure AD compatible passwordless authentication method like Microsoft Authenticator phone sign-in for regular launches of your virtual desktop and then use a FIDO2 hardware security key as a form of step-up authentication to highly sensitive apps that are accessed within the virtual desktop sessionįellow FIDO2 enthusiast Ben Splittgerber and I started discussing this on Twitter back in November 2019 and posted about our successes redirecting various FIDO2 keys including multi-protocol FIDO2 keys such as the YubiKey 5 NFC.You want to register a new FIDO2 hardware security key with the Microsoft Security info page ( then click Security info > which takes you to the page) over a secure company controlled virtual desktop session instead of your unmanaged BYO device for the FIDO2 onboarding experience.You want to use FIDO2 hardware security keys within the virtual desktop or virtual app session with Azure AD protected web apps.There are many use cases for FIDO2 keys used over a remoting protocol: You can use FIDO2 hardware security keys plugged into your physical desktop over the Citrix HDX remoting protocol for use with virtualized Windows Desktop and Server OSes that can be hundreds of miles away running in your data center or cloud tenant (Azure IaaS). ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |