Security Key Support

HYPR web authentication is fully compliant with FIDO Alliance requirements for security key authentication.

HYPR workstation authentication requires security keys or smart-cards to have PIV operability. The ability to store a certificate is vital to the HYPR Passwordless client's functionality. See HYPR Passwordless Requirements for specifics on device models and their varying features.

Users may opt to authenticate with a compliant security key or smart-card instead of a mobile device; administrators can govern availability of this method at the server and application level. And if a user cannot access the needed device, Security Key Recovery Mode is a secure fallback.

Entra ID Security Key Provisioning

For Entra-joined devices, when you click Start Pairing, you may see a Security Key option, which will provision your FIDO2 security key directly into Microsoft Entra ID. This allows you to use your security key for both HYPR authentication and Entra ID sign-in.

Related

• FIDO2 Settings

• Workstation Settings: Enable Security Key

• Pairing with a Security Key