Policy
Turn on security key sign-in
This policy setting allows you to control whether users can sign in using external security keys. If you enable this policy setting, users can sign in with external security keys. If you disable or don't configure this policy setting, users can't sign in with external security keys.
Pack Microsoft Windows
Category System / Logon
Policy ID
a651d228c5c1 Internal name
AllowSecurityKeySignIn Registry
Copy registry mappings
HKLM\Software\Policies\Microsoft\FIDO\EnableFIDODeviceLogon (enabled) = 1
HKLM\Software\Policies\Microsoft\FIDO\EnableFIDODeviceLogon (disabled) = 0Policy notes
This policy setting allows you to control whether users can sign in using external security keys. If you enable this policy setting, users can sign in with external security keys. If you disable or don't configure this policy setting, users can't sign in with external security keys.
Related policies
Allow users to select when a password is required when resuming from connected standbyAlways use classic logonAlways use custom logon backgroundAlways wait for the network at computer startup and logonAssign a default credential providerAssign a default domain for logonBlock user from showing account details on sign-in