WebAuthn Passkeys

Passwordless login with FIDO2 security keys, Touch ID, and Windows Hello.

User Registration

1. From the NOBA login screen, select Sign in with Passkey.
2. Enter your username and complete password/TOTP verification.
3. Follow the browser prompt to register your authenticator.
4. The passkey is now linked to your account for passwordless login.

Admin Management

The Settings → WebAuthn tab lists all registered passkeys across all users. Admins can revoke any passkey (e.g., for a lost device or departed employee).

Supported Key Types

• ES256 — ECDSA with P-256 curve (most common for security keys)
• RS256 — RSA with SHA-256 (some hardware tokens)
• EdDSA — Ed25519 (newer security keys)