Firefox now works with Windows Hello for web authentication

By Dan Thorp-Lancaster
published

Hello, there, Firefox.

Microsoft and Mozilla are both working to make passwords a thing of the past, and the latest version of Firefox is a big step towards that future. Firefox version 66 includes support for Windows Hello for web authentication, allowing you to log in to websites that support the latest FIDO2 standards for passwordless logins.

Currently, the feature is only available with Firefox 66 for Windows Insiders testing the Windows 10 19H1 update in the Fast ring. If you meet both requirements, however, you'll be able to use a variety of supported authentication methods supported by Windows Hello to sign into websites. "That includes face or fingerprint biometrics, and a wide range of external security keys via the CTAP2 protocol from FIDO2, as well as existing deployed CTAP1 FIDO U2F-style security keys," Mozilla says in a blog post (opens in new tab).

Microsoft has been vocal in its efforts to kill passwords due to the security issues that they pose. In November, the company added support for FIDO2 security keys as a login method for Microsoft accounts, allowing users to ditch their passwords.

Firefox 66 is available to download (opens in new tab) starting today. Windows Insiders on the Fast ring can try its Windows Hello support starting now. Everyone else will automatically gain access to the feature when the Windows 10 19H1 update ships later this spring.

Dan Thorp-Lancaster
Dan Thorp-Lancaster

Dan Thorp-Lancaster is the former Editor-in-Chief of Windows Central. He began working with Windows Central, Android Central, and iMore as a news writer in 2014 and is obsessed with tech of all sorts. You can follow Dan on Twitter @DthorpL and Instagram @heyitsdtl

9 Comments
  • This is going to be so awesome, can't wait!
  • Wake me when Firefox supports "Microsoft Authenticator" like Chrome does. I am assuming it will work when ChromEdge becomes available?
  • What do you mean? Like when you log in to a Microsoft account and you get a notification on your phone through MS Authenticator instead of a password? That's not universal across browsers?
  • That has nothing to do with browser. It works on Firefox. Just tested it
  • I am talking about the "Windows 10 Accounts" extension on Chrome. The only thing available like that for Firefox is a port of the Chrome extension someone hacked up to work.
  • So excited for this. Have been trying to get it to work through flags and other stuff for ages, not much news on the internet about plans. So happy to hear it's rolling out soon!
  • Too bad Windows Hello isn't secure. While it's sufficient for opening a computer, it is *not* secure enough for any sort of transaction or allowing access to sensitive or confidential information. It can be beat by enrolling a mannequin head or mask, which will allow anyone to create a fake account, and/or use a likeness of a user to get in. Next...
  • It depends on implementation. Don't forget, Hello is not only IR camera, but also PIN and fingerprint reader.
  • "enrolling a mannequin head or mask" - I don't know if this is true or not true, but I don't see anyone spending the time and money making a copy of my face. I've been trying to get rid of my face for years.