Hi there,
We have the intention to get rid of passwords and implement passwordless. Currently, we are using Microsoft Entra ID.
Entra ID offers a variety of authentication options, including FIDO2 Passkeys, which can be stored in the Microsoft Authenticator App, Windows Hello, or via Microsoft Authenticator App Push notifications. There are also integration capabilities for macOS, though the device must be enrolled in Intune to be compatible.
Additionally, Conditional Access policies allow you to block authentication methods that require entering a username and password.
I'm curious about which authentication method you’ve implemented and any challenges you've encountered.
Our goal is to purchase separate physical security keys for administrators, while allowing other employees to use their personal phones as a key (key vault) for authentication or login via Microsoft Authenticator App Push notifications.