ID-07Moderate

How to Fix: Passkey Adoption Coverage

Step-by-step guide to implement passkey adoption coverage in your Microsoft 365 environment.

See your drift in 5 minutesAuto-remediate ID-07 on your tenant

Free baseline scan · No credit card · 5 minute setup

15-20 minutes

Estimated Time

4

Steps

medium

Severity

Enhanced Security

Baseline Level

Why This Matters

Passkeys provide phishing-resistant authentication for all users. High adoption rates reduce organizational vulnerability to credential theft attacks. Microsoft and industry standards increasingly recommend passkeys as the primary authentication method.

Prerequisites

  • 1Global Administrator or appropriate admin role in Microsoft Entra ID
  • 2Access to Microsoft Entra admin center (entra.microsoft.com)

Expected Configuration

  • More than 50% of users have registered passkey methods
  • Passkeys are enabled in Authentication Methods policy
  • Registration campaign is active for remaining users

Remediation Steps

1

Assess Current Identity Configuration

Review your current identity settings in Microsoft Entra ID.

  • Navigate to Microsoft Entra admin center
  • Go to Identity > Users or relevant section
  • Review current configuration
2

Plan Required Changes

Determine what modifications are needed.

  • Compare current state to expected configuration
  • Identify affected users or groups
  • Plan rollout strategy
3

Apply Configuration

Implement the required identity configuration changes.

  • Update relevant settings
  • Configure policies as needed
  • Apply changes to affected scope
4

Validate Changes

Confirm the configuration meets requirements.

  • Run TrueConfig scan
  • Verify expected behavior
  • Monitor for any issues

Related Resources

Automate Your Security Configuration

TrueConfig scans your Microsoft 365 environment on a schedule you control and, with safety gates, can fix configuration drift automatically. Start your free trial today.

Start Free Trial