Search

FIDO2 Use Case Migration

Ellen Thoren - Versasec
Ellen Thoren - Versasec
  • Updated

Introduction

If you upgraded vSEC:CMS from version 6.12 to version 7.x and you were using FIDO2 templates, your configuration has changed. Please read this article carefully for details.

Configuration Changes

From version 7.X the way you configure FIDO2 related templates has changed. Therefore when you update to 7.X from 6.12 any FIDO2 template configuration will be migrated to new templates. 

The templates that were used in 6.12 will still functions. It is only that the way you configure them will have changed.

It is recommended that you review how this new mechanism works. Depending on what IdP(s) you use please review the guides below before continuing.

  • For Entra ID see here
  • For Thales STA see here
  • For Okta see here
  • For Ping see here
  • For Entrust Identity see here

After you update you will see that any FIDO2 templates will now be configurable from Templates - FIDO2 in the Admin application. From here you will see 3 options:

FIDO2 Templates

Here you will see migrated templates with tags appended to them. The tags will say either [deprecated] and [migrated]. The [deprecated] templates will not be used and are here for information purposes. Any [deprecated] template will have been moved to a new template with the [migrated] tag. These will be used in your already created templates under Templates - Credential Templates. Refer to the linked articles above in Configuration Changes for more details on what settings are configurable for here.

FIDO2 Passkey Templates

Here you will see migrated templates with tags appended to them. The tags will say either [deprecated] and [migrated]. The [deprecated] templates will not be used and are here for information purposes. Any [deprecated] template will have been moved to a new template with the [migrated] tag. These will be used in your already created templates under Templates - Credential Templates. Refer to the linked articles above in Configuration Changes for more details on what settings are configurable for here.

FIDO2 Enterprise Templates

For any templates used where enterprise tokens are used refer to this article for details on using such credentials in your environment.