{"id":66182,"date":"2025-07-15T09:00:09","date_gmt":"2025-07-15T07:00:09","guid":{"rendered":"https:\/\/nolabnoparty.com\/?p=66182"},"modified":"2025-07-14T08:52:53","modified_gmt":"2025-07-14T06:52:53","slug":"enable-fido2-authentication-in-omnissa-horizon-true-sso","status":"publish","type":"post","link":"https:\/\/nolabnoparty.com\/en\/enable-fido2-authentication-in-omnissa-horizon-true-sso\/","title":{"rendered":"Enable FIDO2 authentication in Omnissa Horizon True SSO"},"content":{"rendered":"<p><img decoding=\"async\" class=\"aligncenter wp-image-66187 size-full\" title=\"enable-fido2-authentication-omnissa-horizon-true-sso-01\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-01.jpg\" alt=\"enable-fido2-authentication-omnissa-horizon-true-sso-01\" width=\"602\" height=\"202\" \/><\/p>\n<p>To enforce the login process, FIDO2 authentication adds an <strong>additional layer of security<\/strong>, enabling a robust MFA authentication process.<\/p>\n<p>Leveraging <strong>Azure authentication methods<\/strong> and <a href=\"https:\/\/nolabnoparty.com\/en\/omnissa-horizon-2503-upgrade-guide-app-volumes-manager-pt-1\/\">Omnissa Horizon<\/a> True SSO capabilities enhances the security of the VDI infrastructure against unwanted access.<!--more--><\/p>\n<p>&nbsp;<\/p>\n<h2>Configure Omnissa Horizon True SSO<\/h2>\n<p>Before configuring the FIDO2 authentication, you must have a working Omnissa Horizon infrastructure that leverages <strong>SAML and True SSO<\/strong> (True SSO is recommended but not mandatory) for authentication.<\/p>\n<p>To configure Horizon True SSO, you can follow <a href=\"https:\/\/nolabnoparty.com\/en\/vmware-horizon-true-sso-configuration-pt-1\/\">this guide<\/a>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66191\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-02-1.jpg\" alt=\"\" width=\"602\" height=\"202\" title=\"\"><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<h2>Configure the Azure security group<\/h2>\n<p>Login to the <a href=\"https:\/\/azure.microsoft.com\/\" target=\"_blank\" rel=\"noopener\">Azure portal<\/a> and click on <strong>Microsoft Entra ID<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66193\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-03-600x423.jpg\" alt=\"\" width=\"600\" height=\"423\" title=\"\"><\/p>\n<p>Select <strong>Manage &gt; Groups<\/strong> to create a new group.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66195\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-04-600x305.jpg\" alt=\"\" width=\"600\" height=\"305\" title=\"\"><\/p>\n<p>Click <strong>New group<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66197\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-05-600x252.jpg\" alt=\"\" width=\"600\" height=\"252\" title=\"\"><\/p>\n<p>Specify the <strong>Group type<\/strong> as <strong>Security<\/strong> and enter the desired <strong>Group name<\/strong>. Click the link <strong>No members selected<\/strong> to add the required users.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66200\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-06-600x376.jpg\" alt=\"\" width=\"600\" height=\"376\" title=\"\"><\/p>\n<p>Select the users to add and click <strong>Select<\/strong> to confirm.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66202\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-07-600x356.jpg\" alt=\"\" width=\"600\" height=\"356\" title=\"\"><\/p>\n<p>Click <strong>Create<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66204\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-08-600x465.jpg\" alt=\"\" width=\"600\" height=\"465\" title=\"\"><\/p>\n<p>The new Security Group has been created successfully.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66206\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-09-600x335.jpg\" alt=\"\" width=\"600\" height=\"335\" title=\"\"><\/p>\n<p>&nbsp;<\/p>\n<h2>Enable passkeys (FIDO2) for the organization<\/h2>\n<p>After creating the Security Group, navigate to <strong>Microsoft Entra ID &gt; Manage &gt; Security<\/strong> area. Select <strong>Manage &gt; Authentication methods<\/strong>.<\/p>\n<p>In the <strong>Authentication method policies<\/strong> section, click <strong>Passkey (FIDO2)<\/strong> to proceed with the configuration.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66208\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-10-600x409.jpg\" alt=\"\" width=\"600\" height=\"409\" title=\"\"><\/p>\n<p>Go to <strong>Manage &gt; Policies<\/strong> section and click <strong>Passkey (FIDO2)<\/strong> option.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66210\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-11-600x344.jpg\" alt=\"\" width=\"600\" height=\"344\" title=\"\"><\/p>\n<p>In the <strong>Enable and Target<\/strong> tab, click on <strong>Enable<\/strong> switch and thick the <strong>Select groups<\/strong> option. Click the <strong>Add groups<\/strong> link to assign the desired security group for the selected authentication method.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66212\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-12-600x357.jpg\" alt=\"\" width=\"600\" height=\"357\" title=\"\"><\/p>\n<p>Select the security group created earlier (<em>FIDO2<\/em> in the example) then click <strong>Select<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66214\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-13-600x347.jpg\" alt=\"\" width=\"600\" height=\"347\" title=\"\"><\/p>\n<p>The chosen group has been added.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66216\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-14-600x455.jpg\" alt=\"\" width=\"600\" height=\"455\" title=\"\"><\/p>\n<p>Now move to <strong>Configure<\/strong> tab and under <strong>GENERAL<\/strong> select <strong>Yes<\/strong> for both <strong>Allow self-service set up<\/strong> and <strong>Enforce attestation<\/strong> options. Click <strong>Yes<\/strong> for option <strong>Enforce key restriction<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66218\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-15-600x423.jpg\" alt=\"\" width=\"600\" height=\"423\" title=\"\"><\/p>\n<p>This option requires to add the <strong>AAGUID<\/strong> to enforce key restrictions. Each security key vendor must provides the Authenticator Attestation GUID (AAGUID), a <strong>128-bit identifier<\/strong> indicating the <strong>key type<\/strong>, such as the <strong>make and model<\/strong>.\u00a0In this example the <a href=\"https:\/\/thetis.io\/products\/fido2-usb-c-nfc-totp-hotp-passkey\" target=\"_blank\" rel=\"noopener\">Thetis PRO-C FIDO2 Security Key Device - Passkey, USB-C &amp; NFC<\/a> was used.<\/p>\n<p>A list of <strong>security keys eligible<\/strong> for attestation with Microsoft Entra ID can be found in <a href=\"https:\/\/learn.microsoft.com\/en-us\/entra\/identity\/authentication\/concept-fido2-hardware-vendor\" target=\"_blank\" rel=\"noopener\">this page<\/a>.<\/p>\n<p>Identify and <strong>copy the AAGUID<\/strong> written at the bottom of the corresponding <strong>Product<\/strong> page (<em>AAGUID a3975549-b191-fd67-b8fb-017e2917fdb3<\/em>).<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66220\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-16-600x245.jpg\" alt=\"\" width=\"600\" height=\"245\" title=\"\"><\/p>\n<p>Now click <strong>Add AAGUID<\/strong> to add the correct code.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66222\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-17-600x186.jpg\" alt=\"\" width=\"600\" height=\"186\" title=\"\"><\/p>\n<p><strong>Paste the code<\/strong> copied from the website and click <strong>OK<\/strong> to save.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66224\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-18.jpg\" alt=\"\" width=\"302\" height=\"275\" title=\"\"><\/p>\n<p>Click <strong>Save<\/strong> to save the FIDO2 authentication method configuration.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66226\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-19-600x418.jpg\" alt=\"\" width=\"600\" height=\"418\" title=\"\"><\/p>\n<p>The Passkey (FIDO2) has been configured successfully.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66228\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-20-600x335.jpg\" alt=\"\" width=\"600\" height=\"335\" title=\"\"><\/p>\n<p>&nbsp;<\/p>\n<h2>Configure the security key<\/h2>\n<p>First, insert the security key into the computer's USB port.<\/p>\n<p>Download the <strong>Key Manager<\/strong> software for the FIDO2 security key in your hands and run the application.<\/p>\n<p>In the example the <strong>Thetis security key<\/strong> has been used. Access the <strong>FIDO<\/strong> area and <strong>specify the PIN<\/strong> for your key. A <strong>6 numbers PIN<\/strong> is required to configure the PIN successfully.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66230\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-21-600x428.jpg\" alt=\"\" width=\"600\" height=\"428\" title=\"\"><\/p>\n<p>Go to <strong>Settings<\/strong> and select <strong>OATH OTP<\/strong> then click <strong>Save<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66232\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-22-600x428.jpg\" alt=\"\" width=\"600\" height=\"428\" title=\"\"><\/p>\n<p>In <strong>HOTP<\/strong> area, click <strong>Configure<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66234\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-23-600x428.jpg\" alt=\"\" width=\"600\" height=\"428\" title=\"\"><\/p>\n<p>Click <strong>Generate<\/strong> then <strong>Save<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66236\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-24.jpg\" alt=\"\" width=\"438\" height=\"344\" title=\"\"><\/p>\n<p>Now go to <strong>Product Info<\/strong> and write down the serial number to better identify the key in case of need.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66238\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-25-600x428.jpg\" alt=\"\" width=\"600\" height=\"428\" title=\"\"><\/p>\n<p>&nbsp;<\/p>\n<h2>Configure FIDO2 authentication to users<\/h2>\n<p>Open your preferred browser and enter the URL: <span style=\"color: #0000ff;\">https:\/\/mysignins.microsoft.com\/security-info<\/span>. Enter the username of the user you want to configure then click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66240\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-26.jpg\" alt=\"\" width=\"442\" height=\"408\" title=\"\"><\/p>\n<p>Enter the\u00a0<strong>Password<\/strong>\u00a0and click\u00a0<strong>Sign in<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66242\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-27.jpg\" alt=\"\" width=\"442\" height=\"348\" title=\"\"><\/p>\n<p>Specify the\u00a0<strong>MFA Code<\/strong> using the Authenticator then click\u00a0<strong>Verify<\/strong>. Note the user you want to configure with FIDO2\u00a0<strong>must have MFA enabled<\/strong> in Azure.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66244\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-28.jpg\" alt=\"\" width=\"442\" height=\"402\" title=\"\"><\/p>\n<p>In <strong>Security info<\/strong>\u00a0area, click <strong>Add sign-in method<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66246\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-29-600x370.jpg\" alt=\"\" width=\"600\" height=\"370\" title=\"\"><\/p>\n<p>Select <strong>Security key<\/strong> option.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66248\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-30.jpg\" alt=\"\" width=\"482\" height=\"665\" title=\"\"><\/p>\n<p>Select <strong>USB device<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66250\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-31.jpg\" alt=\"\" width=\"482\" height=\"229\" title=\"\"><\/p>\n<p>Click <strong>Next<\/strong>\u00a0to proceed.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66252\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-32.jpg\" alt=\"\" width=\"482\" height=\"249\" title=\"\"><\/p>\n<p>You are redirected to a new window.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66254\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-33.jpg\" alt=\"\" width=\"482\" height=\"178\" title=\"\"><\/p>\n<p>Insert the security key into the USB port and click <strong>Back<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66256\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-34.jpg\" alt=\"\" width=\"450\" height=\"496\" title=\"\"><\/p>\n<p>Select <strong>Use an external security key<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66258\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-35.jpg\" alt=\"\" width=\"450\" height=\"415\" title=\"\"><\/p>\n<p>Click <strong>OK<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66260\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-36.jpg\" alt=\"\" width=\"456\" height=\"249\" title=\"\"><\/p>\n<p>Click <strong>OK<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66262\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-37.jpg\" alt=\"\" width=\"456\" height=\"323\" title=\"\"><\/p>\n<p>Enter the <strong>security PIN<\/strong> configured earlier and click <strong>OK<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66264\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-38.jpg\" alt=\"\" width=\"456\" height=\"252\" title=\"\"><\/p>\n<p><strong>Push the button<\/strong> from the security key.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66266\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-39.jpg\" alt=\"\" width=\"456\" height=\"240\" title=\"\"><\/p>\n<p>In the FIDO2 security key used in this example the button is identified by the <strong>key icon<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66268\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-40.jpg\" alt=\"\" width=\"400\" height=\"277\" title=\"\"><\/p>\n<p>Enter a <strong>Name<\/strong> for the security key and click <strong>Next<\/strong>\u00a0to complete the configuration<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66270\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-41.jpg\" alt=\"\" width=\"482\" height=\"197\" title=\"\"><\/p>\n<p>Click <strong>Done<\/strong> to close the window.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66272\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-42.jpg\" alt=\"\" width=\"482\" height=\"268\" title=\"\"><\/p>\n<p>The <strong>Passkey<\/strong> method has been configured successfully for the selected user.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66274\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-43-600x350.jpg\" alt=\"\" width=\"600\" height=\"350\" title=\"\"><\/p>\n<p>&nbsp;<\/p>\n<h2>Test the connection to a Horizon VDI using True SSO and FIDO2<\/h2>\n<p>Insert the FIDO2 security key into the <strong>USB port<\/strong> of your computer.<\/p>\n<p>Using the preferred browser, enter the <strong>public DNS name<\/strong> to access your VDI infrastructure (<em>https:\/\/vdi.domain.com<\/em> for example). Click <strong>Omnissa Horizon Web Client<\/strong> (you can also use the Horizon Client).<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66276\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-44.jpg\" alt=\"\" width=\"442\" height=\"562\" title=\"\"><\/p>\n<p>Since the infrastructure is configured to have <a href=\"https:\/\/nolabnoparty.com\/en\/vmware-uag-configure-azure-mfa-saml\/\">MFA with Azure<\/a>, you need to specify your credentials. Enter your <strong>username<\/strong> and click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66278\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-45.jpg\" alt=\"\" width=\"442\" height=\"416\" title=\"\"><\/p>\n<p>Enter the <strong>Password<\/strong> and click <strong>Sign in<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66280\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-46.jpg\" alt=\"\" width=\"442\" height=\"382\" title=\"\"><\/p>\n<p>Since the user is configured to have FIDO2 authentication as <strong>additional authentication method<\/strong>, you are prompted to specify the passkey to use. Click <strong>Windows Hello or external security key<\/strong> (the message type depends on the OS version used).<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66282\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-47.jpg\" alt=\"\" width=\"450\" height=\"391\" title=\"\"><\/p>\n<p>Enter the <strong>PIN<\/strong> of your security key and click <strong>OK<\/strong>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66284\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-48.jpg\" alt=\"\" width=\"456\" height=\"328\" title=\"\"><\/p>\n<p><strong>Push the button<\/strong> on your key to complete the sign in process.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-66286\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-49.jpg\" alt=\"\" width=\"456\" height=\"316\" title=\"\"><\/p>\n<p>If the authentication process succeed, the user is redirected to the typical Horizon console. Select the desired <strong>Desktop Pool<\/strong> to access the VDI.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66288\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-50-600x315.jpg\" alt=\"\" width=\"600\" height=\"315\" title=\"\"><\/p>\n<p>Because the infrastructure is configure to leverage True SSO, <strong>no additional credentials<\/strong> are required to access the VDI.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-large wp-image-66290\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/07\/enable-fido2-authentication-omnissa-horizon-true-sso-51-600x359.jpg\" alt=\"\" width=\"600\" height=\"359\" title=\"\"><\/p>\n<p>Securing the access to the Omnissa Horizon infrastructure with FIDO2 authentication, you can <strong>enforce the login security process<\/strong> providing Multi Factor Authentication (MFA) to users.<\/p>\n<p><img decoding=\"async\" title=\"signature\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/images\/firma.jpg\" alt=\"signature\" \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>To enforce the login process, FIDO2 authentication adds an additional layer of security, enabling a robust MFA authentication process. Leveraging Azure authentication methods and Omnissa Horizon True SSO capabilities enhances the security of the VDI infrastructure against unwanted access.<\/p>\n","protected":false},"author":3,"featured_media":66187,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rop_custom_images_group":[],"rop_custom_messages_group":[],"rop_publish_now":"initial","rop_publish_now_accounts":{"linkedin_93tdZWzMZc_93tdZWzMZc":"","facebook_2879994398731222_17841400390232720":"","twitter_113568041_113568041":"","mastodon_115463926174894442_115463926174894442":""},"rop_publish_now_history":[],"rop_publish_now_status":"pending","footnotes":""},"categories":[1025,2905],"tags":[668,1682,2984,1711,2265],"class_list":["post-66182","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-horizon-en","category-omnissa-en","tag-authentication-en","tag-azure","tag-fido2","tag-horizon","tag-mfa","has_thumb"],"_links":{"self":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/66182","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/comments?post=66182"}],"version-history":[{"count":0,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/66182\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media\/66187"}],"wp:attachment":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media?parent=66182"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/categories?post=66182"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/tags?post=66182"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}