Passwords and traditional MFA are no longer enough. FIDO2 passkeys enable phishing‑resistant, standards‑based passwordless authentication and are a key building block of modern identity security in Microsoft Entra ID.

In this session, we cover best practices for using FIDO2 passkeys in the Microsoft ecosystem, focusing on OAuth 2.0–based authentication across real scenarios: Windows sign‑in, Microsoft Edge, Microsoft 365, and Single Sign‑On (SSO) for cloud applications. We’ll explore how passkeys work with both hardware security keys and software passkey providers, and how to design a passwordless strategy that is secure, scalable, and user‑friendly.

You’ll learn how to implement phishing‑resistant authentication end‑to‑end using Microsoft Entra ID—reducing attack surface, improving user experience, and moving beyond passwords for good.