Entra ID Passkey Support

I cannot manage to store any passkeys of Microsoft Business Acounts to 1Password.

I have disabled the key attestation and key restrictions in EntraID and also tried to ad the AAGUID of 1Password to the allow list.

Microsoft used to only support device-bound passkeys, but according to Microsoft docs, synced keys (as with 1Password) should be allowed when setting Enforce attestation to No. See https://learn.microsoft.com/en-us/entra/identity/authentication/how-to-enable-passkey-fido2

If you set Enforce attestation to No, users can register any type of passkey. Set Enforce attestation to Yes to ensure that users can only register device-bound passkeys.

Given the documentations I assume there a lack of support within 1Password or I am missing some configuration next to setting Enforce attestation to No.

Does anybody know, how to get the passkeys working with 1Password or is there any roadmap from 1Password or Microsoft, when this will be supported?

Forum Discussion

Entra ID Passkey Support

Featured discussions

September at 1Password: Browser versions, enhanced security, and new integrations

Recent discussions

All devices offline

Easy (or easiest) access to "generate password"?

Cannot create passkey for existing login item

Electron framework leading to Tahoe slowdowns

Browser extension in Zen crashes the browser