FIDO2 login issues on Windows 11 Enterprise

Question

Hello,

for testing purposes we have enabled FIDO2 Auth in Azure AD. Everything works except: if the notebook is connected to a docking station and the lid is closed, then users cannot log in with the YubicoKey.

When the notebook is connected to a docking station but the lid is open, everything works normally.

Is this a bug or should I consider it normal behaviour.

Attached are two clips:

Normal behaviour | Lid is open

Windows problem ... | lid is closed

Sometimes there is no error message at all.

Answer 1

@Christian Schmittel Thank you for reaching out to us, As far I am aware FIDO2 login with lid closed should work without any issues, further researching on this found a similar issue (with Dell laptop) in our knowledge base in the past where usb power management within the bios affected the state of the USB when the lid was closed, there was an advice from Yubico in that case where adjusting the BIOS setting ‘Enable lid switch’ to off and the FIDO2 device started functioning correctly with the lid closed. 

Would suggest if you have any such setting in the bios do check or else contacting FIDO2 vendor should further help you in this issue.

Let me know if you have any further questions, feel free to post back.

Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.

Answer 2

Hello @Givary-MSFT

I am seeing exactly the same issue as Christian above. This indeed appears as a Windows 11 bug as I have tested this on 3 different notebooks and external monitors from different OEMS including Microsoft Surface Book2, ThinkPad and Dell.

Can you please look into it?