Configuring FIDO2 biometrics for MFA authentication

Page created: 3 Jun 2020 |

Page updated: 15 Dec 2020

| 1 min read

PingId Product

To allow users to pair and authenticate using the built-in biometrics on their device for MFA (Multi-factor authentication), enable FIDO2 biometrics in the admin portal.

Users must enter their username (and password, if required), and are then prompted to authenticate with their device biometrics.

Note: To configure FIDO2 passwordless authentication, see Configuring FIDO2 passwordless authentication.

Sign on to the admin portal.
Go to Setup > PingID > Configuration.
Go to the Alternate Authentication Methods section, and in the FIDO2 Biometrics row, select the Enable check box.
Click Save.

Users can pair and authenticate with gestures defined on their FIDO2 biometrics accessing device. For more information, see Using Windows Hello for authentication, Using Apple Mac Touch ID for authentication, and Using Android biometrics for authentication.

Configuring FIDO2 biometrics for MFA authentication - PingID

PingID Administration Guide