• Pair your security key with your account to enable authentication. For more information, see Setting up your security key or Adding and reordering devices.
  • The minimum version you require depends on your organization's configuration:
    • If your organization requires you to enter a password to authenticate, you'll need PingID for Windows login 2.3 or later.
    • If your organization has eliminated passwords, you'll need PingID for Windows Passwordless login 1.2 or later.
  • If you are using a Virtual Machine (VM) to connect to Windows login and want to authenticate using your security key, make sure your VM is configured to recognize a USB device.
Note:
  • If your organization requires you to enter a password when you log in, it is not possible to use a FIDO2 security key to authenticate when accessing your Windows login account through RDP. If your organization has eliminated passwords, you can do so.
  • To use your security key to authenticate when you are offline, you must authenticate successfully at least once when online (see also Authenticating using a security key for manual authentication (Windows login)).
The authentication flow varies slightly, according to your organization's configuration policy.
  • Passwordless authentication