fido2AuthenticationMethod resource type

Namespace: microsoft.graph

A representation of a passkey (FIDO2) registered to a user. Passkey (FIDO2) is a sign-in authentication method.

This is a derived type that inherits from the authenticationMethod resource type.

Methods

Method	Return type	Description
List	fido2AuthenticationMethod collection	Retrieve a list of a user's fido2AuthenticationMethod objects and their properties.
Get	fido2AuthenticationMethod	Read the properties and relationships of a user's fido2AuthenticationMethod object.
Delete	None	Delete a user's fido2AuthenticationMethod object.

Properties

Property	Type	Description
aaGuid	String	Authenticator Attestation GUID, an identifier that indicates the type (such as make and model) of the authenticator.
attestationCertificates	String collection	The attestation certificate or certificates attached to this passkey.
attestationLevel	attestationLevel	The attestation level of this passkey (FIDO2). The possible values are: `attested`, `notAttested`, `unknownFutureValue`.
createdDateTime	DateTimeOffset	The timestamp when this key was registered to the user. Inherited from authenticationMethod.
displayName	String	The display name of the key as given by the user.
id	String	The authentication method identifier.
model	String	The manufacturer-assigned model of the FIDO2 passkey.
passkeyType	passkeyType	The type of passkey. The possible values are: `deviceBound`, `synced`, `unknownFutureValue`.

Relationships

None.

JSON representation

The following JSON representation shows the resource type.

{
  "@odata.type": "#microsoft.graph.fido2AuthenticationMethod",
  "aaGuid": "String",
  "attestationCertificates": [
    "String"
  ],
  "attestationLevel": "String",
  "createdDateTime": "String (timestamp)",
  "displayName": "String",
  "id": "String (identifier)",
  "model": "String",
  "passkeyType": "String"
  }

Feedback

Was this page helpful?

Last updated on 2026-03-25