Defender 6.4.1 version supports FIDO2 compatible hardware Yubikey.
Defender 6.4.1 version supports FIDO2 compatible hardware Yubikey.
Requesting FIDO2 token on Defender Self-Service Portal
Register token on ISAPI [One time operation]
Authenticate/Login using FIDO2 registered token
Requesting FIDO2 Token program on the Defender Self-Service Portal
Click on Request FIDO2 Token tile.
Click on Program Token button.
User should enter FIDO2 token Name:
Should be at least four characters
Special character and space are not allowed.
Maximum length of 40 characters
Underscore (_) is allowed
Click on Next and window will display success message.
FIDO2 token will appear in assigned token list of user with unique ID.
FIDO2 tokens cannot be re-registered.
In case an unregistered FIDO2 token is already present on the user’s assigned token list, they cannot request a new token from the portal.
For more information, see Registering a hardware token.
To register a FIDO2 Token
FIDO2 tokens can be registered on ISAPI before authentication for the first time. This is a onetime operation.
If FIDO2 tokens are already assigned to users, FIDO2 Registration screen will display list of unregistered FIDO2 tokens.
Users need to select any one unregistered FIDO2 token to register.
Users need to enter serial number of Token in serial number field.
Should be at least four characters
Special character and space are not allowed.
Maximum length of 40 characters
Underscore (_) is allowed
After entering the AD password, users need to click on Register button and browser pop-up will appear asking user to insert and touch on FIDO2 compatible YubiKey to complete the registration of FIDO2 token.
On successful registration, Login screen will appear for users to continue to authenticate.
During registration, users can authenticate using other assigned tokens by clicking on Sign in with another option, if they do not want to use FIDO2 token.
In case users have at least one already registered FIDO2 token, they need to click on the register button to register any unregistered tokens.
To login using a FIDO2 Token
For more information, see Registering a hardware token.
Your system administrator may provide you with a hardware token that allows you to authenticate and get access to resources protected with Defender. Before you start using the hardware token for authentication, you need to register it. You can either have the system administrator register the hardware token for you or you can register the token yourself.
Your system administrator may configure a special Web site called the Defender Self-Service Portal where you can register hardware tokens. Contact your system administrator to learn if you can use the Defender Self-Service Portal to register hardware tokens and to obtain the address (URL) of the portal Web site.
To self-register a hardware token
© 2024 One Identity LLC. ALL RIGHTS RESERVED. 이용 약관 개인정보 보호정책 Cookie Preference Center