Skip to main content

FIDO2 support matrix

For FIDO2, you need a capable authenticator device that the browser can access. The authenticator can be one of the following:

  • A platform authenticator, such as a mobile device with fingerprint scanning capability, Windows 10 device with Windows Hello, or a MacBook with Touch ID.
  • A roaming authenticator, that is, a hardware key, for example, YubiKey NFC.
  • A virtual authenticator, for example, Google Chrome's WebAuthn tools. For more information, see the Chrome DevTools documentation, or the official documentation for your tool of choice.

See the supported FIDO2 authentication setups in the following chapters. We recommend to run various tests in your device landscape to make sure that your systems are compatible with the devices of your users.

Browsers

Desktop

BrowserSystem requirements, setup
Google Chrome 67+See Chrome browser system requirements
Mozilla Firefox 60+See Firefox System Requirements
Microsoft Edge 18+See Microsoft Edge supported Operating Systems
Apple Safari 13+See Update to the latest version of Safari
Opera 54+See Opera system requirements
Vivaldi 5.0+See Download Vivaldi

Mobile

BrowserMobile OSSystem requrements, setup
Google Chrome 105+Android, iOSSee Download & install Google Chrome
Safari 14.5+iOSSee Update to the latest version of Safari

For more information, see Web Authentication API.

Platform authenticators

Platform authenticatorSystem requirements, setup
Windows HelloSee Learn about Windows Hello and set it up
iOS FaceIDSee Use Face ID on your iPhone or iPad Pro
iOS TouchIDSee Use Touch ID on iPhone and iPad
Android pattern, fingerprintSee Set screen lock on an Android device
Apple passkeysSee Passkeys

Roaming authenticators

Roaming authenticatorSystem requirements, setup
YubiKey BioSee YubiKey Bio Series – FIDO Edition
YubiKey NFCSee Security Key Series
Token2 T2F2 NFCSee Token2 T2F2-NFC FIDO2, U2F and TOTP Security Key
Token2 T2F2-BioSee Token2 T2F2-Bio FIDO2.1.pre, U2F and TOTP Security Key with Fingerprint protection

Passkeys and native mobile APIs

Passkeys are currently only supported by the latest available iOS 16 and macOS versions, and require Safari.

You can integrate FIDO2 authentication into Apple iOS native applications from iOS API version 15 onward and Android native applications from Android version 7 onward, using Google Play Services FIDO2 API.

Consider the following in case of Android OS:

  • Transaction confirmations are not permitted, in line with the Fido2 standard
  • Deregistration is not supported