IntuneManagement icon indicating copy to clipboard operation
IntuneManagement copied to clipboard
verified publisher icon Micke-K

Use of phishing resistant login

Open lbonjean opened this issue 7 months ago • 3 comments

We like to enforce phishing resistant login (Fido2 keys, passkeys) for our admins (peaple with priviledged rolses assigned). When we login, there is no possibility to change the authentication method to fido keys. Is this deliberate?

lbonjean avatar May 31 '25 12:05 lbonjean

Hello,

Yes, as in not enabled by default.

Download the code from the Development branch and enable WAM in Settings. WAM is not enabled by default but will allow enhance authentications once enabled.

Note that WAM is only working with PowerShell 7+.

Let me know how it goes.

Cheers!

Micke-K avatar May 31 '25 13:05 Micke-K

Hi,

It works indeed, thanks. There is a small typo in the description. Title = "Use WAM for eahanced login methods" Do you want me to do a pull request for this? Best regards

lbonjean avatar Jun 01 '25 14:06 lbonjean

Thank you the update.

I'll add that in the next upload. Thank for reporting it.

Cheers!

Micke-K avatar Jun 07 '25 22:06 Micke-K

Closing. Included in latest release.

Micke-K avatar Sep 14 '25 02:09 Micke-K