IDmelon is excited to share a significant advancement in our mission to eliminate the complications and hassles of deploying secure passwordless authentication in organizations. IDmelon has integrated Microsoft Entra ID with the latest FIDO2 provisioning APIs to enhance the employee onboarding process, solving a persistent challenge for many large enterprises.
Streamlining Authentication from Day One
Passkeys have revolutionized secure authentication by eliminating the need for passwords, which are often the weakest link in security. Instead, passkeys use cryptographic credentials that can be integrated into various devices, from RFID/NFC cards to smartphones and laptops. Users simply register their devices with a FIDO-compatible service or application, and a cryptographic key pair (private and public keys) is generated for future authentication.
Passkeys are poised to become the standard for secure authentication in the digital age. As more services and platforms adopt FIDO-based passkeys, users can expect a more secure and convenient login experience. With their enhanced security, ease of use, and platform independence, passkeys are paving the way for a passwordless future.
Previously, enterprise users had to manually register passkeys for each application or service, creating a cumbersome onboarding process for both users and IT administrators. With the new FIDO2 provisioning APIs from Microsoft Entra ID, however, IT administrators can now create and register passkey credentials on behalf of their users, eliminating the need for manual registration and significantly simplifying and accelerating the onboarding process.
Organizations can still deploy security keys in their default configuration or let users be involved in the registration of their own keys, but this new capability allows keys to be pre-registered for users. This lifts the labor-intensive onboarding burden from HR or IT department and gives employees a head start by providing them with immediate access to the applications and devices that they need. This not only boosts productivity but also reduces turnover by ensuring a smoother and more efficient onboarding experience.
IDmelon’s Path to Enhanced Authentication
At IDmelon, we initially offered a similar feature at enterprise level that relied on Temporary Access Pass (TAP) to log in on behalf of users and register their security keys. While functional, this method was not as reliable and fast as it should have been. The introduction of Microsoft Entra ID APIs allowed us to replace our previous tool with a more seamless, reliable, and quicker solution. Leveraging our experience with similar features, we swiftly integrated the new APIs into our system, and we are proud to announce its successful deployment.
Natee Pretikul, Principal Product Management Lead, Microsoft Security said, “We are pleased that through our FIDO2 Provisioning APIs integration with IDmelon’s solution, we're making it easier for organizations to adopt passkeys. This collaboration empowers businesses to quickly implement phishing-resistant multi-factor authentication (MFA) for their end users.”
IDmelon aims to enhance the overall experience for both users and administrators by offering additional capabilities. These advancements in the passkey space enable our enterprise customers to achieve their business goals more effectively by reducing help desk calls and minimizing costs. This recent development not only has improved our service but also aligns with our commitment to innovating and bringing simple and secure authentication solutions to our customers.
Contact us today to see how easy it is to secure your business with IDmelon!
