Office 365 for work: We need Office 365 for Work support a FIDO Universal Second Factor (U2F) protocol standard Security Key.
As many organisation would like to shift to Office 365 but they concern about the security standard which request Office 365 to support Universal Second Factor (U2F) protocol standard security key as Microsoft is a member of FIDO.
So, I wrote this idea to be a feedback request to Office team.
Kim Nilsson commented
That still nothing has happened on this front is embarrassing.
Wesley G commented
Is anyone from Microsoft paying attention to this? It is apparently easy to implement U2F. How long has U2F been around? Why is it not implemented yet? I just checked, as a global admin on ours at work and the best I can do is TOTP codes, which are ok but U2F forces the physical presence of the token and a physical touch. Please just implement this already. We should not have to beg you for a good security standard that can prevent so many issues, as evidenced by Google's report.
Please do something about this MS:
Reply to MS O365 Support:
I’m not looking for password less authentication – I want multi-factor authentication (username/password AND something you have – a U2F token) for Office 365. And preferably without the license requirement of Azure AD P1 or P2 – which would be a significant (and probably impossible) expense for our organisation. I also do not want to use a U2F token in conjunction with a mobile app – that just makes it even more cumbersome.
I’m astonished there is nothing on the roadmap especially considering that the UserVoice request (which I have submitted to) has been running since 2015!
As I mentioned, many other prominent cloud services allow you to use FIDO2/U2F tokens for authentication – why is Microsoft not even considering this method of authentication?
Please, Please Microsoft add U2F/FIDO2 support in Office 365 - and do it as standard so that you don't have to upgrade to Azure AD P2 or P2.
While AAD has been publicly reviewing FIDO2, but it seems Microsoft hasn't notice this idea in UserVoice...
Question is - Why are you not using Azure MFA/Conditional Access policies? We looked at Duo/Other MFA products and honestly Azure MFA/CA are better than any others out there and we have 0 issues. We use SSO/Trusted locations...
Michael K commented
A public preview of FIDO 2 support was released in late 2019: https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-passwordless
Giuseppe De Francesco commented
Really... this being missing is terrible :(
Ed Hirst commented
This is a major piece missing from Office 365. Our company uses Duo for our 2FA and it's embarrassing to have to hand new employees pieces of paper with bypass codes on for their first days where they're changing passwords and needing to login to multiple applications, all requiring MFA.
I'm considering moving to Office 365 but am shocked to learn that MS doesn't support FIDO U2F. Surely, if Windows 10 1903 supports it, Office 365 should too.
Agreed we need support for FIDO2 on Office365
Jeffery Birks commented
Deepnet Security has now created a new web page dedicated to hardware tokens for Azure MFA and Office 365, and provides information of how to use SafeID tokens with Azure MFA (see following link);
While I'm not hopeful for the older U2F keys to ever be supported, FIDO2 is supported on consumer Microsoft accounts (though not well, and only on Edge) and is very well supported in Windows 10 1903 (on all browsers), so this seems the next logical move.
This seems like a lot of votes. Has someone from Microsoft even commented on this?
James Boyle commented
Please add U2F support to Office 365. The security keys available from Yubico and others allow for greater security since they may be disconnected, unlike my phone which is always on and always online. No one should pretend that modern cell phones are capable of providing secure services. From what I understand, implementing U2F should not be overly burdensome and would improve Microsoft's products' marketability.
fido u2f security key. It is an open authentication standard and two-factor authentication (2FA). This maximizes usability process key. To take more advantages to visit our website: www.ftsafe.com
Are you looking for safety and security resources? Your searches are completed. It is a next-generation FIDO U2F Security Key, supports USB, NFC and BLE communications. FIDO U2F certified Security Key. FEITIAN is able to provide various casings for ePass FIDO Security Key to fit the different requirements from customers. It has infinity key pair storage. There has no limit to the number of accounts registered in ePass FIDO Security Key. Get more information visit our website: https://www.ftsafe.com/
John Ellis commented
Add my vote as well. I don't understand why Microsoft only supports a phone app. I have a lot of corporate users that either don't have a smartphone or don't want "work apps" on their personal phone. I'd prefer to give them an inexpensive U2F token for MFA into their O365 account for email. Outlook without MFA isn't an option.
Please add Fido U2F support for Office 365 and AzureAD
Also require Fido for OWA access.