{"id":5208,"date":"2024-02-22T09:01:56","date_gmt":"2024-02-22T00:01:56","guid":{"rendered":"https:\/\/m365jp.net\/?p=5208"},"modified":"2024-02-22T09:15:14","modified_gmt":"2024-02-22T00:15:14","slug":"mc718260-microsoft-entra-id-authentication-strength-improvements-to-support-passkeys","status":"publish","type":"post","link":"https:\/\/m365jp.net\/index.php\/2024-02-22-mc718260-microsoft-entra-id-authentication-strength-improvements-to-support-passkeys","title":{"rendered":"MC718260 | Microsoft Entra ID: Authentication strength improvements to support passkeys"},"content":{"rendered":"<div class=\"postie-post\">\n<div>\n<hr>\n<table id=\"section\">\n<tbody>\n<tr>\n<th width=\"95%\">MC718260 | Microsoft Entra ID: Authentication strength improvements to support passkeys<\/th>\n<\/tr>\n<\/tbody>\n<\/table>\n<hr>\n<table id=\"data\">\n<tbody>\n<tr>\n<th>Classification<\/th>\n<td>stayInformed<\/td>\n<\/tr>\n<tr>\n<th>Last Updated<\/th>\n<td>02\/22\/2024 00:00:20<\/td>\n<\/tr>\n<tr>\n<th>Start Time<\/th>\n<td>02\/22\/2024 00:01:00<\/td>\n<\/tr>\n<tr>\n<th>End Time<\/th>\n<td>06\/19\/2024 07:00:00<\/td>\n<\/tr>\n<tr>\n<th>Message Content<\/th>\n<td>\n<p>Conditional Access authentication strengths in Microsoft Entra ID will be improved to support registration of device-bound passkeys&nbsp;(<a href=\"https:\/\/passkeys.dev\/docs\/reference\/terms\/#device-bound-passkey\" target=\"_blank\" rel=\"noopener\">defined at passkeys.dev<\/a>) stored   on computers, security keys, and mobile devices.&nbsp;<\/p>\n<p>This message is associated with Microsoft 365 Roadmap ID <a href=\"https:\/\/www.microsoft.com\/microsoft-365\/roadmap?filters=&amp;searchterms=182056\" target=\"_blank\" rel=\"noopener\">  182056<\/a>.<\/p>\n<p>[When this will happen:]<\/p>\n<p>Public Preview: We will begin rolling out early March 2024 and expect to complete by mid-March 2024.    <\/p>\n<p>Worldwide, GCC, GCC High, DoD: We will begin rolling out late April 2024 and expect to complete by early May 2024.  <\/p>\n<p>[How this will affect your organization:]  <\/p>\n<p><i>End user registration<\/i>  <\/p>\n<p>Prior to this change, users who were in-scope for authentication strength enforcement who could not satisfy passkey (FIDO2) authentication requirements received an error message asking users to manually register the passkey (FIDO2) method.<\/p>\n<p>With this rollout, in <i>My Security Info<\/i>, new registration options called  <i>Passkey (preview)<\/i> and <i>Passkey in Microsoft Authenticator (preview)<\/i> will be shown to users who are interrupted to register a passkey (FIDO2) method to satisfy authentication strength requirements. Users that are required to register a passkey in   Microsoft Authenticator will see a dedicated registration experience. Users whose organization requires specific passkeys from various vendors and manufacturers will be shown allowable AAGUIDS of the passkeys they can choose to register. No changes are expected   to existing Conditional Access policies targeting security information registration.<\/p>\n<p><b>Current:<\/b>  <\/p>\n<p><img decoding=\"async\" style=\"width: 400px;\" alt=\"user message\" src=\"https:\/\/img-prod-cms-rt-microsoft-com.akamaized.net\/cms\/api\/am\/imageFileData\/RW1hBWH?ver=da48\">  <\/p>\n<p><b>New:<\/b><\/p>\n<p><img decoding=\"async\" style=\"width: 400px;\" alt=\"user message\" src=\"https:\/\/img-prod-cms-rt-microsoft-com.akamaized.net\/cms\/api\/am\/imageFileData\/RW1hBWG?ver=8fa8\">  <\/p>\n<p>[What you need to do to prepare:]  <\/p>\n<p>For more information on changes to Microsoft Entra support for passkeys (FIDO2), please review our previous message center post MC690185:<i> (Updated) Prepare for device-bound passkeys in Microsoft Entra ID (changes to FIDO2 and Windows Hello for Business)<\/i>,   (November 2023).<\/p>\n<p>No action is needed to prepare for this change. You may want to notify your users about this change and update any relevant documentation as appropriate.<\/p>\n<p>  <\/p>\n<\/td>\n<\/tr>\n<tr>\n<th>Machine Translation<\/th>\n<td>\n<p>Microsoft Entra ID \u306e\u6761\u4ef6\u4ed8\u304d\u30a2\u30af\u30bb\u30b9\u8a8d\u8a3c\u306e\u5f37\u5ea6\u304c\u6539\u5584\u3055\u308c\u3001\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30fc\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 \u30ad\u30fc\u3001\u30e2\u30d0\u30a4\u30eb \u30c7\u30d0\u30a4\u30b9\u306b\u683c\u7d0d\u3055\u308c\u3066\u3044\u308b\u30c7\u30d0\u30a4\u30b9\u30d0\u30a4\u30f3\u30c9 \u30d1\u30b9\u30ad\u30fc&nbsp;(<a href=\"https:\/\/passkeys.dev\/docs\/reference\/terms\/#device-bound-passkey\" target=\"_blank\" rel=\"noopener\">passkeys.dev \u3067\u5b9a\u7fa9<\/a>) \u306e\u767b\u9332\u304c\u30b5\u30dd\u30fc\u30c8\u3055\u308c\u307e\u3059\u3002&nbsp;<\/p>\n<p>\u3053\u306e\u30e1\u30c3\u30bb\u30fc\u30b8\u306f\u3001Microsoft 365 \u30ed\u30fc\u30c9\u30de\u30c3\u30d7 ID 182056\u306b\u95a2\u9023\u4ed8\u3051\u3089\u308c <a href=\"https:\/\/www.microsoft.com\/microsoft-365\/roadmap?filters=&amp;searchterms=182056\" target=\"_blank\" rel=\"noopener\">  \u3066\u3044\u307e\u3059<\/a>\u3002<\/p>\n<p>[\u3053\u308c\u304c\u3044\u3064\u8d77\u3053\u308b\u304b:]<\/p>\n<p>\u30d1\u30d6\u30ea\u30c3\u30af \u30d7\u30ec\u30d3\u30e5\u30fc: 2024 \u5e74 3 \u6708\u4e0a\u65ec\u306b\u30ed\u30fc\u30eb\u30a2\u30a6\u30c8\u3092\u958b\u59cb\u3057\u30012024 \u5e74 3 \u6708\u4e2d\u65ec\u307e\u3067\u306b\u5b8c\u4e86\u3059\u308b\u4e88\u5b9a\u3067\u3059\u3002<\/p>\n<p>\u5168\u4e16\u754c\u3001GCC\u3001GCC High\u3001DoD: 2024 \u5e74 4 \u6708\u4e0b\u65ec\u306b\u30ed\u30fc\u30eb\u30a2\u30a6\u30c8\u3092\u958b\u59cb\u3057\u30012024 \u5e74 5 \u6708\u4e0a\u65ec\u307e\u3067\u306b\u5b8c\u4e86\u3059\u308b\u4e88\u5b9a\u3067\u3059\u3002<\/p>\n<p>[\u3053\u308c\u304c\u7d44\u7e54\u306b\u53ca\u307c\u3059\u5f71\u97ff:]  <\/p>\n<p><i>\u30a8\u30f3\u30c9\u30e6\u30fc\u30b6\u30fc\u767b\u9332<\/i>  <\/p>\n<p>\u3053\u306e\u5909\u66f4\u306e\u524d\u306f\u3001\u30d1\u30b9\u30ad\u30fc (FIDO2) \u8a8d\u8a3c\u8981\u4ef6\u3092\u6e80\u305f\u3059\u3053\u3068\u304c\u3067\u304d\u306a\u304b\u3063\u305f\u8a8d\u8a3c\u5f37\u5ea6\u306e\u9069\u7528\u7bc4\u56f2\u5185\u306e\u30e6\u30fc\u30b6\u30fc\u306b\u306f\u3001\u30d1\u30b9\u30ad\u30fc (FIDO2) \u30e1\u30bd\u30c3\u30c9\u3092\u624b\u52d5\u3067\u767b\u9332\u3059\u308b\u3088\u3046\u306b\u6c42\u3081\u308b\u30a8\u30e9\u30fc \u30e1\u30c3\u30bb\u30fc\u30b8\u304c\u8868\u793a\u3055\u308c\u3066\u3044\u307e\u3057\u305f\u3002<\/p>\n<p>\u3053\u306e\u30ed\u30fc\u30eb\u30a2\u30a6\u30c8 <i>\u3067\u306f\u3001\u8a8d\u8a3c<\/i>\u5f37\u5ea6\u306e\u8981\u4ef6\u3092\u6e80\u305f\u3059\u305f\u3081\u306b\u3001 <i>\u30d1\u30b9\u30ad\u30fc (\u30d7\u30ec\u30d3\u30e5\u30fc<\/i> ) \u3068 <i>Microsoft Authenticator \u306e\u30d1\u30b9<\/i> \u30ad\u30fc (\u30d7\u30ec\u30d3\u30e5\u30fc) \u3068\u547c\u3070\u308c\u308b\u65b0\u3057\u3044\u767b\u9332\u30aa\u30d7\u30b7\u30e7\u30f3\u304c\u3001\u30d1\u30b9\u30ad\u30fc (FIDO2) \u30e1\u30bd\u30c3\u30c9\u306e\u767b\u9332\u3092\u4e2d\u65ad\u3055\u308c\u305f\u30e6\u30fc\u30b6\u30fc\u306b\u8868\u793a\u3055\u308c\u307e\u3059\u3002Microsoft Authenticator \u306b\u30d1\u30b9\u30ad\u30fc\u3092\u767b\u9332\u3059\u308b\u5fc5\u8981\u304c\u3042\u308b\u30e6\u30fc\u30b6\u30fc\u306b\u306f\u3001\u5c02\u7528\u306e\u767b\u9332\u30a8\u30af\u30b9\u30da\u30ea\u30a8\u30f3\u30b9\u304c\u8868\u793a\u3055\u308c\u307e\u3059\u3002\u3055\u307e\u3056\u307e\u306a\u30d9\u30f3\u30c0\u30fc\u3084\u30e1\u30fc\u30ab\u30fc\u306e\u7279\u5b9a\u306e\u30d1\u30b9\u30ad\u30fc\u3092\u5fc5\u8981\u3068\u3059\u308b\u7d44\u7e54\u306b\u306f\u3001\u767b\u9332\u3067\u304d\u308b\u30d1\u30b9\u30ad\u30fc\u306e\u8a31\u5bb9\u3055\u308c\u308b   AAGUID \u304c\u8868\u793a\u3055\u308c\u307e\u3059\u3002\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u60c5\u5831\u306e\u767b\u9332\u3092\u5bfe\u8c61\u3068\u3059\u308b\u65e2\u5b58\u306e\u6761\u4ef6\u4ed8\u304d\u30a2\u30af\u30bb\u30b9 \u30dd\u30ea\u30b7\u30fc\u306e\u5909\u66f4\u306f\u4e88\u5b9a\u3055\u308c\u3066\u3044\u307e\u305b\u3093\u3002<\/p>\n<p><b>\u73fe\u5728\u306e\uff1a<\/b>  <\/p>\n<p><img decoding=\"async\" style=\"width: 400px;\" alt=\"user message\" src=\"https:\/\/img-prod-cms-rt-microsoft-com.akamaized.net\/cms\/api\/am\/imageFileData\/RW1hBWH?ver=da48\">  <\/p>\n<p><b>\u65b0\u6a5f\u80fd\uff1a<\/b><\/p>\n<p><img decoding=\"async\" style=\"width: 400px;\" alt=\"user message\" src=\"https:\/\/img-prod-cms-rt-microsoft-com.akamaized.net\/cms\/api\/am\/imageFileData\/RW1hBWG?ver=8fa8\">  <\/p>\n<p>[\u6e96\u5099\u306b\u5fc5\u8981\u306a\u3053\u3068:]  <\/p>\n<p>\u30d1\u30b9\u30ad\u30fc (FIDO2) \u306e Microsoft Entra \u30b5\u30dd\u30fc\u30c8\u306e\u5909\u66f4\u306e\u8a73\u7d30\u306b\u3064\u3044\u3066\u306f\u3001\u4ee5\u524d\u306e\u30e1\u30c3\u30bb\u30fc\u30b8 \u30bb\u30f3\u30bf\u30fc\u306e\u6295\u7a3f MC690185: (<i> \u66f4\u65b0) Microsoft Entra ID \u3067\u30c7\u30d0\u30a4\u30b9\u30d0\u30a4\u30f3\u30c9 \u30d1\u30b9\u30ad\u30fc\u3092\u6e96\u5099\u3059\u308b (FIDO2 \u3068Windows Hello for Business\u3078\u306e\u5909\u66f4) (<\/i>2023 \u5e74 11 \u6708) \u3092\u53c2\u7167\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n<p>\u3053\u306e\u5909\u66f4\u306b\u5099\u3048\u308b\u305f\u3081\u306e\u30a2\u30af\u30b7\u30e7\u30f3\u306f\u5fc5\u8981\u3042\u308a\u307e\u305b\u3093\u3002\u3053\u306e\u5909\u66f4\u306b\u3064\u3044\u3066\u30e6\u30fc\u30b6\u30fc\u306b\u901a\u77e5\u3057\u3001\u5fc5\u8981\u306b\u5fdc\u3058\u3066\u95a2\u9023\u30c9\u30ad\u30e5\u30e1\u30f3\u30c8\u3092\u66f4\u65b0\u3059\u308b\u3053\u3068\u3092\u304a\u52e7\u3081\u3057\u307e\u3059\u3002<\/p>\n<p>  <\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>MC718260 | Microsoft Entra ID: Authentication strength improvements to support passkeys Classification stayInf [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-5208","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/5208","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/comments?post=5208"}],"version-history":[{"count":0,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/5208\/revisions"}],"wp:attachment":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/media?parent=5208"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/categories?post=5208"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/tags?post=5208"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}