You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: api-reference/beta/resources/authenticationmethods-overview.md
+2-1Lines changed: 2 additions & 1 deletion
Original file line number
Diff line number
Diff line change
@@ -29,6 +29,7 @@ The authentication method APIs are used to manage a user's authentication method
29
29
* You can retrieve details of a user's Windows Hello for Business registration, and delete it if the user has lost the device.
30
30
* You can add an email address to a user. The user can then use that email as part of the Self-Service Password Reset (SSPR) process.
31
31
* You can update that email, or delete it from the user.
32
+
* You can assign and activate a hardware OATH token for a user.
32
33
33
34
The ability for a user to use an authentication method is governed by the [authentication method policy](authenticationmethodspolicies-overview.md) for the tenant. For example, only users in the R&D department might be enabled to use the FIDO2 method while all users might be enabled to use Microsoft Authenticator.
34
35
@@ -40,6 +41,7 @@ We don't recommend using the authentication methods APIs for scenarios where you
|[emailAuthenticationMethod](emailauthenticationmethod.md)|An email address can be used by a user as part of the Self-Service Password Reset (SSPR) process.|See a user's authentication email address. Add, update, or remove an email address to a user.|
42
43
|[fido2AuthenticationMethod](fido2authenticationmethod.md)|A FIDO2 Security Key can be used by a user to sign-in to Microsoft Entra ID.|Delete a lost FIDO2 Security Key.|
44
+
|[hardwareOathAuthenticationMethod](hardwareoathauthenticationmethod.md)|Allow users to perform multifactor authentication using a hardware OATH device that provides a one-time code.|Get, (un)assign or (de)activate a hardware token to a user.|
43
45
|[microsoftAuthenticatorAuthenticationMethod](microsoftauthenticatorauthenticationmethod.md)|Microsoft Authenticator can be used by a user to sign-in or perform multi-factor authentication to Microsoft Entra ID|Delete a Microsoft Authenticator authentication method.|
44
46
|[passwordAuthenticationMethod](passwordauthenticationmethod.md)| A password is currently the default primary authentication method in Microsoft Entra ID.|Reset a user's password|
45
47
|[phoneAuthenticationMethod](phoneauthenticationmethod.md)|A phone can be used by a user to authenticate using [SMS or voice calls](/azure/active-directory/authentication/concept-authentication-methods#phone-options) (as allowed by policy).|See a user's authentication phone numbers. Add, update, or remove a phone number to a user. Enable or disable a primary mobile phone for SMS sign-in.|
@@ -54,7 +56,6 @@ The following authentication methods are not yet supported in Microsoft Graph `b
|Hardware token | Allow users to perform multifactor authentication using a physical device that provides a one-time code. | Get a hardware token assigned to a user.|
58
59
|Security questions and answers | Allow users to validate their identity when performing a self-service password reset. |Delete a security question a user registered.|
Copy file name to clipboardExpand all lines: api-reference/beta/resources/authenticationmethodspolicies-overview.md
+1Lines changed: 1 addition & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -31,6 +31,7 @@ The authentication method policies APIs are used to manage policy settings. For
31
31
|[externalauthenticationmethodconfiguration](externalauthenticationmethodconfiguration.md) (preview)|Define users who can use an external authentication method to satisfy the second factor of Microsoft Entra ID multifactor authentication requirements.|
32
32
|[fido2authenticationmethodconfiguration](fido2authenticationmethodconfiguration.md)| Define FIDO2 security key restrictions and users who can use them to sign in to Microsoft Entra ID.|
33
33
|[hardwareOathAuthenticationMethodConfiguration](hardwareoathauthenticationmethodconfiguration.md)| Define users who can use hardware OATH tokens to sign in to Microsoft Entra ID.|
34
+
|[hardwareOathAuthenticationMethodDevice](hardwareoathtokenauthenticationmethoddevice.md)| Manage the inventory of hardware OATH tokens, e.g. create, delete and get tokens.|
34
35
|[microsoftauthenticatorauthenticationmethodconfiguration](microsoftauthenticatorauthenticationmethodconfiguration.md)|Define users who can use Microsoft Authenticator on the Microsoft Entra tenant.|
35
36
|[smsAuthenticationMethodConfiguration](smsAuthenticationMethodConfiguration.md)| Define users who can use Text Message on the Microsoft Entra tenant.|
36
37
|[softwareOathAuthenticationMethodConfiguration](softwareOathAuthenticationMethodConfiguration.md)|Define users who can use a third-party software OATH authentication method.|
0 commit comments