Platform authentication on the IES server

Adding a key

Windows 10-11

1. Enable Windows Hello Fingerprint or PIN sign-in on your device.

1. When adding a FIDO key for server authentication, use the fingerprint sensor or log in via PIN.

1. In the upper right corner of the window, click the profile icon, select Profile from the drop-down list, and go to FIDO2 Authenticators.

1. Choose Platform, optionally check Use Usernameless, click Next, enter your PIN, set an authentication name, and click Done.

Apple iPhone

1. Set up Touch ID on your iPhone.

2. When adding a FIDO key, scan your fingerprint using the sensor.

3. Name the key and touch Done.

Android

1. Enable fingerprint or PIN unlock on your Android device.

2. When adding a FIDO key, scan your fingerprint or log in via PIN. Touch Get Started, then select Use this device with screen lock.

   • If using fingerprint unlock, scan your fingerprint.

   • If using PIN unlock, touch Use screen lock and enter your PIN.

3. Name the key and touch Done.

Authorization via the platform key

Windows 10

1. Select the Sign in with a Security Key option.

2. Choose your user in the next window and click OK.

3. Scan your fingerprint using the sensor, or log in via PIN.

Apple iPhone

1. Select the Sign in with a Security Key option.

2. Scan your fingerprint using the sensor.

Android

1. Enter your login and touch Next.

2. Select Sign in with a Security Key.

1. Scan your fingerprint using the sensor, or log in via PIN:

   • If using fingerprint unlock, scan your fingerprint.

   • If using PIN unlock, touch Use screen lock and enter your PIN.

Using the Platform Key as a Second Factor

You can also use a platform key for two-factor authentication. To do this, set up your platform key as described above. Then, at the login screen, input your login and password, and choose Security Key from the list of two-factor authentication methods.