-
Notifications
You must be signed in to change notification settings - Fork 4.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
FIDO2 Passkey support #28527
Labels
Comments
Related partially to #131 using general standard name instead of just Yubikey support. Comments talk about U2F because mentioned issue is from before the FIDO2 standard. FIDO2 Standard includes support for U2F standard. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem? Please describe.
Currently I can't use FIDO2 Passkeys / WebAuthn for passwordless login or for multi-factor authentication.
Describe the solution you'd like
I would like to use FIDO2 Passkeys for multi-factor authentication. I'm using Yubikey 5 nowadays and it would be nice to be able to use it when logging in. In future it would also be nice to be able to login using passkeys. It should support also software based passkeys and not be restricted to hardware based security keys.
My LDAP server is FreeIPA and it supports Passkeys partially (https://freeipa.readthedocs.io/en/latest/designs/passkeys.html) . It would be nice to be able to get possible passkey from LDAP during first login without MFA.
Describe alternatives you've considered
Using currently available TOTP in Login MFA or using authentication methods that require authentication with TOTP. Using OIDC auth method that can require TOTP or Passkey during login.
Explain any additional use-cases
Not included
Additional context
Not included
The text was updated successfully, but these errors were encountered: