Go Passwordless on Android Devices Using Derived Credentials with Microsoft Intune
With the increasing demand for remote working and the continued growth in the use of mobile devices, many organizations are turning to cloud services for secure and efficient access to their corporate resources. Microsoft Intune provides a comprehensive cloud-based mobile device management (MDM) platform that enables organizations to manage and protect their devices, applications, and data.
One of the key benefits of Intune is the ability to go passwordless on Android devices using derived credentials. This provides secure access to corporate resources without the need for users to remember complex passwords.
What are Derived Credentials?
Derived credentials are a secure and convenient way to manage user credentials. The credentials are derived from the user’s device, and the password is never stored or transmitted. This ensures that the credentials are unique and cannot be reused or stolen.
Microsoft Intune supports multiple derived credentials standards, including FIDO2, WebAuthn, and CTAP. All of these standards provide secure authentication and access to corporate resources without the need for users to remember complex passwords.
How to Go Passwordless on Android Devices with Intune
To enable passwordless authentication on Android devices with Intune, you need to do the following:
* Configure the Intune environment for passwordless authentication using the derived credentials standards.
* Configure the user’s device to use the derived credentials.
* Configure the user’s account to use the derived credentials.
Once you have configured the Intune environment, you can enable passwordless authentication on Android devices by following the steps outlined in the Intune documentation.
The first step is to configure the user’s device to use the derived credentials. This requires the user to install the Microsoft Intune Company Portal app on their device and add their account. The user will then be prompted to enroll their device in Intune. Once the device is enrolled, the user can enable derived credentials for their account.
The second step is to configure the user’s account to use the derived credentials. This requires the user to enter their username and password and select the derived credentials option. Once the user has opted-in to the derived credentials, they will be prompted to authenticate using their biometric information (fingerprint or facial recognition).
Once the user has authenticated, they will be able to access corporate resources without having to enter a password. This process is secure and convenient, and provides an additional layer of security for corporate resources.
Conclusion
Microsoft Intune provides a secure and convenient way to go passwordless on Android devices using derived credentials. This provides a secure and convenient way to access corporate resources without having to remember complex passwords.
By configuring the Intune environment, user’s device, and user’s account, organizations can enable secure passwordless authentication on Android devices. This provides an additional layer of security and convenience for users, while also reducing the risk of unauthorized access to corporate resources.
