Protect what matters – even after you're gone. Make a plan for your digital legacy today.
Forum Discussion
Solved
Entra ID Passkey Support
I cannot manage to store any passkeys of Microsoft Business Acounts to 1Password.
I have disabled the key attestation and key restrictions in EntraID and also tried to ad the AAGUID of 1Password to the allow list.
Microsoft used to only support device-bound passkeys, but according to Microsoft docs, synced keys (as with 1Password) should be allowed when setting Enforce attestation to No. See https://learn.microsoft.com/en-us/entra/identity/authentication/how-to-enable-passkey-fido2
If you set Enforce attestation to No, users can register any type of passkey. Set Enforce attestation to Yes to ensure that users can only register device-bound passkeys.
Given the documentations I assume there a lack of support within 1Password or I am missing some configuration next to setting Enforce attestation to No.
Does anybody know, how to get the passkeys working with 1Password or is there any roadmap from 1Password or Microsoft, when this will be supported?
I just want to inform the option for synced passkeys for Entra ID organization accounts is now rolling out as Public Preview. A synced passkey is a multi-device passkey that you can store in a password manager like 1Password.
I posted a description how to configure it for 1Password, as I’ve been waiting for multi-device passkeys in Entra ID since Microsoft introduced passkeys two years ago: https://blog-en.topedia.com/2025/11/entra-id-now-supports-multi-device-passkeys-for-password-managers-like-1password/
4 Replies
I just want to inform the option for synced passkeys for Entra ID organization accounts is now rolling out as Public Preview. A synced passkey is a multi-device passkey that you can store in a password manager like 1Password.
I posted a description how to configure it for 1Password, as I’ve been waiting for multi-device passkeys in Entra ID since Microsoft introduced passkeys two years ago: https://blog-en.topedia.com/2025/11/entra-id-now-supports-multi-device-passkeys-for-password-managers-like-1password/- 1P_Dave
Moderator
Hello ste! 👋
Thanks for the question! I took at look at Microsoft's website and it looks like Microsoft currently only supports device-bound passkeys and passkeys stored on security keys:
Microsoft Entra ID currently supports device-bound passkeys stored on FIDO2 security keys and in Microsoft Authenticator. Microsoft is committed to securing customers and users with passkeys. We're investing in both synced and device-bound passkeys for work accounts.
Source: https://learn.microsoft.com/en-us/entra/identity/authentication/how-to-enable-passkey-fido2
-Dave
Microsoft just announced Synced Passkeys in Microsoft Entra. Is or will this be supported now by 1Password as well?
https://www.youtube.com/watch?v=36nIaSBJ7_UDoes not look like it is supported with 1Password, at least I did not get it to work.
If anyone does get it up running with 1Password, I would be happy if they would share the necessary configuration.
