![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 39%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEH%3C/text%3E%3C/svg%3E)
25,130 questions
Hello @emmanuel hdz
Yes, it is possible to integrate fingerprint recognition for login purposes in Microsoft Entra without storing any user information. Microsoft Entra offers passwordless authentication options that integrate with Microsoft Entra ID, such as Windows Hello for Business and Microsoft Authenticator. These methods use biometric data or a PIN for authentication, which are directly tied to the user’s device, preventing access from anyone other than the owner.
For integrating this with your current custom policy, you might want to look into Microsoft Entra’s API-driven provisioning. This allows you to bring identities from any source into Microsoft Entra ID. You can use your automation tool of choice to send information to Microsoft Entra API-driven provisioning.
As for the user experience, a user signs into Windows using a biometric or PIN gesture. This gesture unlocks the Windows Hello for Business private key and is sent to the Cloud Authentication security support provider. The entire process is done within the device, ensuring no user data is stored in Microsoft Entra.
If you find this process complex, there are alternative libraries available for integrating fingerprint recognition in mobile apps. Some open-source projects on GitHub include sourceafis-java, Fingerprint-Feature-Extraction, and fingerprint-gui. For React Native apps, you can use expo-local-authentication. You can also check out fingerprintjs and App Lock for Android apps. Please ensure to review the documentation and community support for these libraries to determine if they meet your requirements.
If this answers your question?