fido2AuthenticationMethodConfiguration resource type
Namespace: microsoft.graph
Represents a FIDO2 authentication methods policy. Authentication methods policies define configuration settings and users or groups who are enabled to use the authentication method.
Inherits from authenticationMethodConfiguration.
Methods
| Method | Return type | Description |
|---|---|---|
| Get | fido2AuthenticationMethodConfiguration | Read the properties and relationships of a fido2AuthenticationMethodConfiguration object. |
| Update | fido2AuthenticationMethodConfiguration | Update the properties of a fido2AuthenticationMethodConfiguration object. |
| Delete | None | Reverts the fido2AuthenticationMethodConfiguration object to its default configuration. |
Properties
| Property | Type | Description |
|---|---|---|
| excludeTargets | excludeTarget collection | Groups of users that are excluded from the policy. |
| id | String | The authentication method policy identifier. |
| isAttestationEnforced | Boolean | Determines whether attestation must be enforced for FIDO2 security key registration. |
| isSelfServiceRegistrationAllowed | Boolean | Determines if users can register new FIDO2 security keys. |
| keyRestrictions | fido2KeyRestrictions | Controls whether key restrictions are enforced on FIDO2 security keys, either allowing or disallowing certain key types as defined by Authenticator Attestation GUID (AAGUID), an identifier that indicates the type (e.g. make and model) of the authenticator. |
| state | authenticationMethodState | Possible values are: enabled, disabled. |
Relationships
| Relationship | Type | Description |
|---|---|---|
| includeTargets | authenticationMethodTarget collection | A collection of groups that are enabled to use the authentication method. |
JSON representation
The following is a JSON representation of the resource.
{
"@odata.type": "#microsoft.graph.fido2AuthenticationMethodConfiguration",
"id": "String (identifier)",
"includeTargets": [ { "@odata.type": "microsoft.graph.authenticationMethodTarget" } ],
"isAttestationEnforced": "Boolean",
"isSelfServiceRegistrationAllowed": "Boolean",
"keyRestrictions": {
"@odata.type": "microsoft.graph.fido2KeyRestrictions"
},
"state": "String",
"excludeTargets": [
{
"@odata.type": "microsoft.graph.excludeTarget"
}
]
}
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for