Entra

New EntraFIDOFinder Module Version Release!

May 25, 2026 by ClaytonT Leave a Comment

Good news and bad news.. which would you like first? Bad news? There are no new external PowerShell functions in this release, but I did create some functions to compare differences as well as one to show changes by the month. Is there a functionality you are looking for? Add an issue or discussion and lets make it happen!

Now for the changes, we have 11 new keys, 7 updated keys, and 52 keys removed.

✅ New Authenticators (11)

The following authenticators are now supported:

Clife Key 2

AAGUID: fc5ca237-69a0-4f3c-afe4-1ebc66def6df

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	✅
NFC	❌
BLE	❌

Clife Key 2 NFC

AAGUID: 23315ad0-6aca-4ba1-952e-f044f1e36976

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	✅
NFC	✅
BLE	❌

eToken FIDO NFC

AAGUID: b113a455-cfb6-4c17-8cba-cd952feb7d48

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	❌
NFC	✅
BLE	❌

G+D StarKey FIDO2-NFC

AAGUID: 7a53c643-9dec-4219-b3a4-f9d24aca4e12

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	✅
NFC	✅
BLE	❌

HID Crescendo Key V3

AAGUID: 87c13177-85d6-40ac-8c61-fe7ab3de9dfb

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	✅
NFC	✅
BLE	❌

HID Crescendo 4000

AAGUID: 0b8b05a4-ebd4-4b0b-8f5f-33d7b6e606ab

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	❌
NFC	✅
BLE	❌

SECORA ID V2 by Infineon Pay Edition

AAGUID: 3e9db280-256a-4e17-b08e-19d79e9be166

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	❌
NFC	✅
BLE	❌

SECORA ID V2 by Infineon Pay Edition M

AAGUID: 005b20e1-f146-4b87-8f3a-36848ff60ea6

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	❌
NFC	✅
BLE	❌

SECORA ID Key S USB by Infineon Consumer Edition

AAGUID: 9a272558-5cfa-4424-be37-65509677b77d

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	❌
NFC	✅
BLE	❌

Taglio CTAP2.1 BIO

AAGUID: 0f00cc22-4640-41e7-9585-384ec73ffe9b

Supported Interfaces:

Interface	Supported
Biometric	✅
USB	✅
NFC	✅
BLE	❌

Thales PAY GFCX13 authenticator

AAGUID: 04a8fcf2-19c1-457b-911e-69219f17583f

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	❌
NFC	✅
BLE	❌

⚠️ Updated Authenticators (7)

The following authenticators have been updated with new capability information:

Arculus FIDO 2.1 Key Card [P71]

AAGUID: 3f59672f-20aa-4afe-b6f4-7e5e916b6d98

Changes:

USB: ✅ → ❌
NFC: ❌ → ✅

Arculus FIDO2/U2F Key Card

AAGUID: 9d3df6ba-282f-11ed-a261-0242ac120002

Changes:

USB: ✅ → ❌
NFC: ❌ → ✅

GoTrust Idem Key FIDO2 Authenticator

AAGUID: 3b1adb99-0dfe-46fd-90b8-7f7614a4de2a

Changes:

USB: ❌ → ✅
NFC: ❌ → ✅

GoTrust Idem Key (Consumer profile)

AAGUID: c611b55c-77b2-4527-8082-590e931b2f08

Changes:

Description: ‘Idem Key (Consumer profile)’ → ‘GoTrust Idem Key (Consumer profile)’

IDEX CTAP2.1 Biometrics

AAGUID: 49a15c1c-3f63-3f51-23a7-b9e00096edd1

Changes:

Description: ‘IDEX CTAP2.1 Biometric, No pin’ → ‘IDEX CTAP2.1 Biometrics’
USB: ❌ → ✅

IDmelon Key

AAGUID: 39a5647e-1853-446c-a1f6-a79bae9f5bc7

Changes:

Description: ‘IDmelon Android Authenticator’ → ‘IDmelon Key’

IDmelon Authenticator

AAGUID: 820d89ed-d65a-409e-85cb-f73f0578f82a

Changes:

Description: ‘IDmelon iOS Authenticator’ → ‘IDmelon Authenticator’

❌ Removed Authenticators (52)

The following authenticators have been removed:

Android Authenticator

AAGUID: b93fd961-f2e6-462f-b122-82002247de78

Dapple Authenticator from Dapple Security Inc.

AAGUID: 6dae43be-af9c-417b-8b9f-1b611168ec60

Deepnet SafeKey/Classic (FP)

AAGUID: e41b42a3-60ac-4afb-8757-a98f2d7f6c9f

Deepnet SafeKey/Classic (USB)

AAGUID: b9f6b7b6-f929-4189-bca9-dd951240c132

ellipticSecure MIRkey USB Authenticator

AAGUID: eb3b131e-59dc-536a-d176-cb7306da10f5

Ensurity AUTH TouchPro

AAGUID: 50cbf15a-238c-4457-8f16-812c43bf3c49

Ensurity AUTH BioPro Desktop

AAGUID: 9eb85bb6-9625-4a72-815d-0487830ccab2

ESS Smart Card Inc. Authenticator

AAGUID: 5343502d-5343-5343-6172-644649444f32

eToken Fusion NFC PIV Enterprise

AAGUID: c3f47802-de73-4dfc-ba22-671fe3304f90

eWBM eFA500 FIDO2 Authenticator

AAGUID: 361a3082-0278-4583-a16f-72a527f973e4

Excelsecu eSecu FIDO2 PRO+ Security Key

AAGUID: f573f209-b7fb-b261-671a-d7cf624cc812

Feitian ePass FIDO2-NFC Plus Authenticator

AAGUID: 260e3021-482d-442d-838c-7edfbe153b7e

Feitian FIDO Smart Card

AAGUID: 2c0df832-92de-4be1-8412-88a8f074df4a

GoldKey Security Token

AAGUID: 0db01cd6-5618-455b-bb46-1ec203d3213e

Hideez Key 3 FIDO2

AAGUID: 3e078ffd-4c54-4586-8baa-a77da113aec5

Ideem ZSM FIDO2 Authenticator

AAGUID: 5e264d9d-28ef-4d34-95b4-5941e7a4faa8

IDEMIA SOLVO Fly 80 R1 FIDO Card Draft

AAGUID: 3fd410dc-8ab7-4b86-a1cb-c7174620b2dc

KeyVault Secp256R1 FIDO2 CTAP2 Authenticator

AAGUID: d61d3b87-3e7c-4aea-9c50-441c371903ad

Ledger Flex FIDO2 Authenticator

AAGUID: 1d8cac46-47a1-3386-af50-e88ae46fe802

Ledger Nano S Plus FIDO2 Authenticator

AAGUID: 58b44d0b-0a7c-f33a-fd48-f7153c871352

Ledger Nano X FIDO2 Authenticator

AAGUID: fcb1bcb4-f370-078c-6993-bc24d0ae3fbe

Ledger Stax FIDO2 Authenticator

AAGUID: 6e24d385-004a-16a0-7bfe-efd963845b34

Ledger Nano S FIDO2 Authenticator

AAGUID: 341e4da9-3c2e-8103-5a9f-aad887135200

OCTATCO EzQuant FIDO2 AUTHENTICATOR

AAGUID: bc2fe499-0d8e-4ffe-96f3-94a82840cf8c

OneKey FIDO2 Bluetooth Authenticator

AAGUID: 70e7c36f-f2f6-9e0d-07a6-bcc243262e6b

OneKey FIDO2 Authenticator

AAGUID: 69e7c36f-f2f6-9e0d-07a6-bcc243262e6b

Pone Biometrics OFFPAD Authenticator

AAGUID: 09591fc6-9811-48f7-8f57-b9f23df6413f

Samsung Pass

AAGUID: 53414d53-554e-4700-0000-000000000000

ToothPic Passkey Provider

AAGUID: cc45f64e-52a2-451b-831a-4edd8022a202

TruU Windows Authenticator

AAGUID: ba86dc56-635f-4141-aef6-00227b1b9af6

TruU Windows Authenticator

AAGUID: 95e4d58c-056e-4a65-866d-f5a69659e880

TruU FIDO2 Authenticator

AAGUID: bb878d7b-cf54-4784-b390-357030497043

FIDO Alliance TruU Sample FIDO2 Authenticator

AAGUID: ca87cb70-4c1b-4579-a8e8-4efdd7c007e0

USB/NFC Passcode Authenticator

AAGUID: cfcb13a2-244f-4b36-9077-82b79d6a7de7

TEST (DUMMY RECORD)

AAGUID: ab32f0c6-2239-afbb-c470-d2ef4e254db6

Veridium iOS SDK

AAGUID: 6e8d1eae-8d40-4c25-bcf8-4633959afc71

Veridium Android SDK

AAGUID: 5ea308b2-7ac7-48b9-ac09-7e2da9015f8c

VivoKey Apex FIDO2

AAGUID: d7a423ad-3e19-4492-9200-78137dccc136

WinMagic FIDO Eazy – TPM

AAGUID: 970c8d9c-19d2-46af-aa32-3f448db49e35

WinMagic FIDO Eazy – Software

AAGUID: 31c3f7ff-bf15-4327-83ec-9336abcbcd34

WinMagic FIDO Eazy – Phone

AAGUID: f56f58b3-d711-4afc-ba7d-6ac05f88cb19

WiSECURE Blentity FIDO2 Authenticator

AAGUID: 5753362b-4e6b-6345-7b2f-255438404c75

YubiKey 5 FIPS Series with Lightning Preview

AAGUID: 5b0e46ba-db02-44ac-b979-ca9b84f5e335

YubiKey 5 FIPS Series with Lightning (RC Preview)

AAGUID: 9e66c661-e428-452a-a8fb-51f7ed088acf

YubiKey 5 FIPS Series with NFC (RC Preview)

AAGUID: ce6bf97f-9f69-4ba7-9032-97adc6ca5cf1

YubiKey 5 FIPS Series (RC Preview)

AAGUID: d2fbd093-ee62-488d-9dad-1e36389f8826

Security Key NFC by Yubico Preview

AAGUID: 760eda36-00aa-4d29-855b-4012a182cdeb

YubiKey 5 Series with Lightning Preview

AAGUID: 3124e301-f14e-4e38-876d-fbeeb090e7bf

YubiKey 5 Series with NFC Preview

AAGUID: 34f5766d-1536-4a24-9033-0e294e510fb0

Security Key NFC by Yubico – Enterprise Edition Preview

AAGUID: 2772ce93-eb4b-4090-8b73-330f48477d73

YubiKey 5 FIPS Series with NFC Preview

AAGUID: 62e54e98-c209-4df3-b692-de71bb6a8528

ZTPass SmartAuth

AAGUID: 99bf4610-ec26-4252-b31f-7380ccd59db5

That’s it! How are you using EntraFIDOFinder? Would love to hear about it and any feedback.

Download at:
PowerShell Gallery: https://www.powershellgallery.com/packages/EntraFIDOFinder/0.0.23
GitHub: https://github.com/DevClate/EntraFIDOFinder

Use the web version at: https://devclate.github.io/EntraFIDOFinder/Explorer/

Have a great day!

EntraFIDOFinder: New Web UI and Over 70 New Authenticators

January 26, 2026 by ClaytonT Leave a Comment

You read that right, over 70 new authenticators are now approved for Entra Attestation and have been add to the web ui and the PowerShell module! I knew they had to be holding back after these last few updates. Also I’ve updated the web UI and curious of your thoughts. I wanted to make it more modern and easier to view, especially the details window.

Here are a few of the new authenticators, but check the change log for the full list.

Android Authenticator

AAGUID: b93fd961-f2e6-462f-b122-82002247de78

Supported Interfaces:

Interface	Supported
Biometric	✅
USB	❌
NFC	❌
BLE	❌

ATLKey Authenticator

AAGUID: 019614a3-2703-7e35-a453-285fd06c5d24

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	✅
NFC	❌
BLE	❌

Dapple Authenticator from Dapple Security Inc.

AAGUID: 6dae43be-af9c-417b-8b9f-1b611168ec60

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	❌
NFC	❌
BLE	❌

Deepnet SafeKey/Classic (FP)

AAGUID: e41b42a3-60ac-4afb-8757-a98f2d7f6c9f

Supported Interfaces:

Interface	Supported
Biometric	✅
USB	❌
NFC	❌
BLE	❌

Deepnet SafeKey/Classic (USB)

AAGUID: b9f6b7b6-f929-4189-bca9-dd951240c132

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	❌
NFC	❌
BLE	❌

ellipticSecure MIRkey USB Authenticator

AAGUID: eb3b131e-59dc-536a-d176-cb7306da10f5

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	✅
NFC	❌
BLE	❌

Ensurity AUTH BioPro Desktop

AAGUID: 9eb85bb6-9625-4a72-815d-0487830ccab2

Supported Interfaces:

Interface	Supported
Biometric	✅
USB	✅
NFC	❌
BLE	❌

Ensurity AUTH TouchPro

AAGUID: 50cbf15a-238c-4457-8f16-812c43bf3c49

Supported Interfaces:

Interface	Supported
Biometric	❌
USB	✅
NFC	❌
BLE	❌

I’ve been working on better ways to see what keys have been added, removed, or modified, as well as approving valid vendors. It’s not perfected yet, but when I get closer, I’ll do a demo of it.

Let me know what you think of the new design and what functionality you wish it had. Also are there any keys you wish were attestation approved for Entra?

Where to get:
PowerShell Gallery: https://www.powershellgallery.com/packages/EntraFIDOFinder/0.0.22
Github: https://github.com/DevClate/EntraFIDOFinder/tree/main
Web UI: https://devclate.github.io/EntraFIDOFinder/Explorer/

Appreciate you taking the time and stay safe out there!

Did you know: SSPR/Password Reset Edition

August 18, 2025 by ClaytonT Leave a Comment

Did you know if you convert to the combined experience for SSPR and password reset, you can remove less secure phone, email, and text authentication? This is as long as you have Authenticator registered and higher methods allowed. See below for SSPR.

This works for SSPR and for password reset through My Sign-Ins.

The gotcha is if you have 2 methods required for SSPR, it will say your not registered for SSPR even if your enabled for it, but only have 1 method (Microsoft Authenticator) registered. As you can see below.

I would definitely recommend adding more secure options as well but at the minimum I’d use Authenticator or higher.

How do you keep your user protected in this situation?

Hope this quick tip was useful and have a great day!

EntraFIDOFinder now with over 50 new keys!

March 17, 2025 by ClaytonT Leave a Comment

I guess I should be careful what I ask for now.. Not sure if you saw, but when Microsoft first made this update it blew up my repo with over 100 issues due to all the changes and I assumed Microsoft had changed how they formatted their website, but they hadn’t. It was just from the new keys, vendors, and changes to current keys.

All of their basic info has been updated on the web and PowerShell module, but I haven’t put all the meta data in from the FIDO Alliance, as I’m looking for a way to fully automate it when new keys are added.

Now to the part you really care about

New Vendors:

Android
Dapple Security
Eviden
Foongton
GSTAG
ID-One
IIST
Infineon Technologies AG
KeyVault
Ledger
Nitrokey
OneKey
Samsung
Securité Carte à Puce
TruU
Veridium
VeroCard
Vivokey
WinMagic
ZTPass

New Keys:

AAGUID	Vendor	Description
`eb3b131e-59dc-536a-d176-cb7306da10f5`	ellipticSecure	ellipticSecure MIRkey USB Authenticator
`8da0e4dc-164b-454e-972e-88f362b23d59`	Eviden	CardOS FIDO2 Token
`46544d5d-8f5d-4db4-89ac-ea8977073fff`	Foongton	Foongtone FIDO Authenticator
`773c30d9-5919-4e96-a4f5-db65e95cf890`	GSTAG	GSTAG OAK FIDO2 Authenticator
`7991798a-a7f3-487f-98c0-3faf7a458a04`	HID Global	HID Crescendo Key V3
`2a55aee6-27cb-42c0-bc6e-04efe999e88a`	HID Global	HID Crescendo 4000
`82b0a720-127a-4788-b56d-d1d4b2d82eac`	ID-One	ID-One Key
`f2145e86-211e-4931-b874-e22bba7d01cc`	ID-One	ID-One Key
`4b89f401-464e-4745-a520-486ddfc5d80e`	IIST	IIST FIDO2 Authenticator
`cfcb13a2-244f-4b36-9077-82b79d6a7de7`	Infineon Technologies AG	USB/NFC Passcode Authenticator
`58b44d0b-0a7c-f33a-fd48-f7153c871352`	Ledger	Ledger Nano S Plus FIDO2 Authenticator
`fcb1bcb4-f370-078c-6993-bc24d0ae3fbe`	Ledger	Ledger Nano X FIDO2 Authenticator
`341e4da9-3c2e-8103-5a9f-aad887135200`	Ledger	Ledger Nano S FIDO2 Authenticator
`2cd2f727-f6ca-44da-8f48-5c2e5da000a2`	Nitrokey	Nitrokey 3 AM
`70e7c36f-f2f6-9e0d-07a6-bcc243262e6b`	OneKey	OneKey FIDO2 Bluetooth Authenticator
`53414d53-554e-4700-0000-000000000000`	Samsung	Samsung Pass
`5343502d-5343-5343-6172-644649444f32`	Securité Carte à Puce	ESS Smart Card Inc. Authenticator
`050dd0bc-ff20-4265-8d5d-305c4b215192`	Thales	eToken Fusion FIPS
`10c70715-2a9a-4de1-b0aa-3cff6d496d39`	Thales	eToken Fusion NFC FIPS
`c3f47802-de73-4dfc-ba22-671fe3304f90`	Thales	eToken Fusion NFC PIV Enterprise
`146e77ef-11eb-4423-b847-ce77864e9411`	Thales	eToken Fusion NFC PIV
`ba86dc56-635f-4141-aef6-00227b1b9af6`	TruU	TruU Windows Authenticator
`95e4d58c-056e-4a65-866d-f5a69659e880`	TruU	TruU Windows Authenticator
`5ea308b2-7ac7-48b9-ac09-7e2da9015f8c`	Veridium	Veridium Android SDK
`6e8d1eae-8d40-4c25-bcf8-4633959afc71`	Veridium	Veridium iOS SDK
`99ed6c29-4573-4847-816d-78ad8f1c75ef`	VeroCard	VeroCard FIDO2 Authenticator
`d7a423ad-3e19-4492-9200-78137dccc136`	VivoKey	VivoKey Apex FIDO2
`31c3f7ff-bf15-4327-83ec-9336abcbcd34`	Winmagic	WinMagic FIDO Eazy – Software
`970c8d9c-19d2-46af-aa32-3f448db49e35`	WinMagic	WinMagic FIDO Eazy – TPM
`f56f58b3-d711-4afc-ba7d-6ac05f88cb19`	WinMagic	WinMagic FIDO Eazy – Phone
`b7d3f68e-88a6-471e-9ecf-2df26d041ede`	Yubico	Security Key NFC by Yubico
`9ff4cc65-6154-4fff-ba09-9e2af7882ad2`	Yubico	Security Key NFC by Yubico – Enterprise Edition (Enterprise Profile)
`34f5766d-1536-4a24-9033-0e294e510fb0`	Yubico	YubiKey 5 Series with NFC Preview
`6ec5cff2-a0f9-4169-945b-f33b563f7b99`	Yubico	YubiKey Bio Series – Multi-protocol Edition (Enterprise Profile)
`8c39ee86-7f9a-4a95-9ba3-f6b097e5c2ee`	Yubico	YubiKey Bio Series – FIDO Edition (Enterprise Profile)
`24673149-6c86-42e7-98d9-433fb5b73296`	Yubico	YubiKey 5 Series with Lightning
`3a662962-c6d4-4023-bebb-98ae92e78e20`	Yubico	YubiKey 5 FIPS Series with Lightning (Enterprise Profile)
`20ac7a17-c814-4833-93fe-539f0d5e3389`	Yubico	YubiKey 5 Series (Enterprise Profile)
`b90e7dc1-316e-4fee-a25a-56a666a670fe`	Yubico	YubiKey 5 Series with Lightning (Enterprise Profile)
`760eda36-00aa-4d29-855b-4012a182cdeb`	Yubico	Security Key NFC by Yubico Preview
`fcc0118f-cd45-435b-8da1-9782b2da0715`	Yubico	YubiKey 5 FIPS Series with NFC
`ff4dac45-ede8-4ec2-aced-cf66103f4335`	Yubico	YubiKey 5 Series
`7b96457d-e3cd-432b-9ceb-c9fdd7ef7432`	Yubico	YubiKey 5 FIPS Series with Lightning
`97e6a830-c952-4740-95fc-7c78dc97ce47`	Yubico	YubiKey Bio Series – Multi-protocol Edition (Enterprise Profile)
`6ab56fad-881f-4a43-acb2-0be065924522`	Yubico	YubiKey 5 Series with NFC (Enterprise Profile)
`d2fbd093-ee62-488d-9dad-1e36389f8826`	Yubico	YubiKey 5 FIPS Series (RC Preview)
`4599062e-6926-4fe7-9566-9e8fb1aedaa0`	Yubico	YubiKey 5 Series (Enterprise Profile)
`d7781e5d-e353-46aa-afe2-3ca49f13332a`	Yubico	YubiKey 5 Series with NFC
`62e54e98-c209-4df3-b692-de71bb6a8528`	Yubico	YubiKey 5 FIPS Series with NFC Preview
`34744913-4f57-4e6e-a527-e9ec3c4b94e6`	Yubico	YubiKey Bio Series – Multi-protocol Edition
`ed042a3a-4b22-4455-bb69-a267b652ae7e`	Yubico	Security Key NFC by Yubico – Enterprise Edition
`3b24bf49-1d45-4484-a917-13175df0867b`	Yubico	YubiKey 5 Series with Lightning (Enterprise Profile)
`3124e301-f14e-4e38-876d-fbeeb090e7bf`	Yubico	YubiKey 5 Series with Lightning Preview
`9e66c661-e428-452a-a8fb-51f7ed088acf`	Yubico	YubiKey 5 FIPS Series with Lightning (RC Preview)
`ce6bf97f-9f69-4ba7-9032-97adc6ca5cf1`	Yubico	YubiKey 5 FIPS Series with NFC (RC Preview)
`2772ce93-eb4b-4090-8b73-330f48477d73`	Yubico	Security Key NFC by Yubico – Enterprise Edition Preview
`ad08c78a-4e41-49b9-86a2-ac15b06899e2`	Yubico	YubiKey Bio Series – FIDO Edition
`905b4cb4-ed6f-4da9-92fc-45e0d4e9b5c7`	Yubico	YubiKey 5 FIPS Series (Enterprise Profile)
`b415094c-49d3-4c8b-b3fe-7d0ad28a6bc4`	ZTPass	ZTPass SmartAuth

Updated Keys
- Updated ‘NFC’ for AAGUID ’30b5035e-d297-4ff1-b00b-addc96ba6a98′ from ‘Yes’ to ‘No’.
- Updated ‘Description’ for AAGUID ’83c47309-aabb-4108-8470-8be838b573cb’ from ‘YubiKey Bio Series (Enterprise Profile)’ to ‘YubiKey Bio Series – FIDO Edition (Enterprise Profile)’.
- Updated ‘Description’ for AAGUID ‘5ca1ab1e-1337-fa57-f1d0-a117e71ca702’ from ‘Allthenticator App: roaming BLE FIDO2 Allthenticator for Windows, Mac, Linux, and Allthenticate door readers’ to ‘Allthenticator iOS App: roaming BLE FIDO2 Allthenticator for Windows, Mac, Linux, and Allthenticate door readers’.
- Updated ‘Description’ for AAGUID ‘d8522d9f-575b-4866-88a9-ba99fa02f35b’ from ‘YubiKey Bio Series’ to ‘YubiKey Bio Series – FIDO Edition’.
- Updated ‘Description’ for AAGUID ‘dd86a2da-86a0-4cbe-b462-4bd31f57bc6f’ from ‘YubiKey Bio FIDO Edition’ to ‘YubiKey Bio Series – FIDO Edition’.

I know, it was a lot for me too! Which FIDO2 keys do you like the best? Feel free to message me if you rather not put it in the comments, but would love to hear your experiences.

PowerShell Gallery: https://www.powershellgallery.com/packages/EntraFIDOFinder/0.0.16
GitHub: https://github.com/DevClate/EntraFIDOFinder
Web Version: https://devclate.github.io/EntraFIDOFinder/Explorer/

Hope you enjoyed and have a great day!

If Maester couldn’t get any better…Custom Test Collection now available

January 27, 2025 by ClaytonT Leave a Comment

The time has finally come. I have created a public repository to store custom Maester tests for everyone. As well as a website for deeper understanding where needed. I haven’t seen anyone else do it yet, and worse case scenario, people can just use the ones that I create, but I envision others adding theirs to this too. Yes, you will have to create the function, test, and the markdown file (I and/or others can help), so that we can have a collection of tests that anyone can pick and choose which ones they want to add to their Maester and customize it to their needs. They don’t need to be 365 related either, as they could be checks for Windows 11 settings, server configs, or check that a certain OU should only has these mentioned users or computers and to make sure that doesn’t change.

This is still in its early stages and would love any feedback to make it better while still showing that it is a companion to Maester. I wanted to get the framework started to that we can start gaining the benefits from the repository while still making it easy to use.

I hope you are excited about this as I am, and we can create a large community collection of tests.

Please star and share the repo. Open issues for tests that you want to see and if you already have one or can make it, put that in the issue. Let’s make all our IT lives easier and safer.

Thank you for taking the time to read this and hope you find value in this and can share your knowledge as well.

Website: https://devclate.github.io/Custom-Maester-Tests/
GitHub: https://github.com/DevClate/Custom-Maester-Tests

I’m also working on a module for the Entra attribute fields that will fix any issues by either manually typing in the correct value or only allow company standard values.

Dec 23, 2024 – EntraFIDOFinder v0.0.14 is Out with New Features!

December 23, 2024 by ClaytonT Leave a Comment

It’s the second to last Monday of the year, so figured I’d release a new version of the EntraFIDOFinder before the end of the year. Here are the main additions.

New Features:

Using -AllProperties now gives you all of the basic information for the key(s), but also gives you all of the data from the FIDO Alliance as well
AAGUID can now be piped in, whether it is 1 key or 100 keys, it will take it
AAGUID can now be imported from a .CSV, .TXT, or .XLSX
Using -DetailedProperties you can now gain access to any of the regular or FIDO Alliance properties to create your output
Added a GitHub Action to directly copy the FIDO Alliance data and merge it into the JSON data and update where necessary
Web Version: You can click on a key and get more information, then there is a button inside it which will show you all of the data in JSON

I did some other cleanup and prepping for some future updates, but what do you think? Any other features we should add? Are there fields not in the standard that you think should be?

Here are a couple sample outputs:

"50a45b0c-80e7-f944-bf29-f552bfa2e048", "973446ca-e21c-9a9b-99f5-9b985a67af0f" | Find-FIDOKey

Vendor      : ACS
Description : ACS FIDO Authenticator
AAGUID      : 50a45b0c-80e7-f944-bf29-f552bfa2e048
Bio         : No
USB         : Yes
NFC         : No
BLE         : No
Version     : FIDO 2.1 PRE
ValidVendor : Yes

Vendor      : ACS
Description : ACS FIDO Authenticator Card
AAGUID      : 973446ca-e21c-9a9b-99f5-9b985a67af0f
Bio         : No
USB         : No
NFC         : Yes
BLE         : No
Version     : FIDO 2.1 PRE
ValidVendor : Yes

"50a45b0c-80e7-f944-bf29-f552bfa2e048" | Find-FIDOKey -AllProperties
{
  "Vendor": "ACS",
  "Description": "ACS FIDO Authenticator",
  "AAGUID": "50a45b0c-80e7-f944-bf29-f552bfa2e048",
  "Bio": "No",
  "USB": "Yes",
  "NFC": "No",
  "BLE": "No",
  "Version": "FIDO 2.1 PRE",
  "ValidVendor": "Yes",
  "metadataStatement": {
    "legalHeader": "Submission of this statement and retrieval and use of this statement indicates acceptance of the appropriate agreement located at <https://fidoalliance.org/metadata/metadata-legal-terms/.">,
    "aaguid": "50a45b0c-80e7-f944-bf29-f552bfa2e048",
    "description": "ACS FIDO Authenticator",
    "authenticatorVersion": 10000,
    "protocolFamily": "fido2",
    "schema": 3,
    "upv": [
      {
        "major": 1,
        "minor": 1
      },
      {
        "major": 1,
        "minor": 0
      }
    ], and more data below

Here is a screenshot of the web version:

Thank you for taking the time to read this and using EntraFIDOFinder. This started out as a quick side project that grew a lot faster than I thought it would. I’ve learned a lot building the backend to this and even some of the front end. I can’t believe it’s almost at 1.2k downloads! Thank you!

PowerShell Gallery: https://www.powershellgallery.com/packages/EntraFIDOFinder/0.0.14
GitHub: https://github.com/DevClate/EntraFIDOFinder
Web Version: https://devclate.github.io/EntraFIDOFinder/Explorer/

Hope you have a great day!