Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Microsoft Edge for Business Device Trust Connectors enable administrators to enhance their organization's security posture directly within the browser. These Connectors allow Identity Providers (IDPs) to obtain device-level signals from Microsoft Edge for Business during user authentication flows. These signals are then sent to and verified by the IDP before a user can authenticate to a specified resource.
Benefits for Administrators
Enhanced Security: By ensuring that only trusted devices can access corporate resources, administrators can significantly reduce the risk of unauthorized access and potential security breaches
Seamless Integration: Device Trust Connectors integrate seamlessly with existing security measures and protocols, extending the reach of security investments without additional costs
Signals
The following signals are sent to the IDP during the device trust flow:
| Signals | Category | Description |
|---|---|---|
| Device Manufacturer | Hardware Information | The company that manufactures the device |
| Device Model | Hardware Information | The model name of the device |
| Operating System | OS Information | The OS installed on the device |
| Operating System Version | OS Information | Version number of the operating system |
| Device Display Name | Hardware Information | The name given to the device in the system |
| Disk Encryption State | Security Features | Whether disk encryption is enabled |
| Device Serial Number | Hardware Information | The unique serial number of the device |
| OS Firewall State | OS Information | The current state of the OS firewall |
| System DNS Servers | Network Information | The DNS servers configured for the device |
| Hostname | General Information | The hostname of the device |
| MAC Addresses | Hardware Information | The MAC addresses assigned to the device |
| Screen Locks Secured State | Security Features | Whether the screen lock is secured |
| Secure Boot Mode (Windows only) | OS Information | Indicates whether secure boot is enabled |
| Windows Machine Domain | OS Information | The domain to which the machine belongs |
| Windows User Domain | OS Information | The user domain for Windows |
| Browser Version | Browser Information | The version of the browser used |
| Built-In Browser DNS Client Enabled | Browser Information | Indicates if the built-in browser DNS client is enabled |
| Site Isolation Enabled | Browser Information | Whether site isolation is enabled in the browser |
| Password Protection Warning Trigger | Security Features | A warning triggered for password-related protections |
Device Trust Providers
| Connector | Documentation Link |
|---|---|
| Cisco Duo | Set up a Cisco Duo Device Trust Connector |
| RSA | Set up a RSA Device Trust Connector |
| Omnissa | Set up an Omnissa Trust Device Connector |
| Ping Identity | Set up a Ping Identity Trust Device Connector |
| HYPR | Set up a HYPR Identity Trust Device Connector |