MyID FIDO & Passkey Credential Management
Overview
MyID’s FIDO and Passkey Credential Management extends the MyID platform to manage FIDO credentials alongside traditional PKI certificates from a single console. It provides policy control over who can issue and use FIDO credentials, visibility of all active credentials across both PKI and FIDO, and full lifecycle management from registration through revocation — all within the same governance framework used for smart card and certificate-based credentials.
Unsung implements MyID FIDO management for UK customers that are adopting FIDO and passkey authentication alongside their existing PKI credential infrastructure and need unified governance across both credential types.
The Challenge
FIDO authentication and passkeys are gaining adoption as a modern, phishing-resistant alternative to passwords. However, organisations that already operate PKI-based smart card authentication face a governance challenge: how to manage FIDO credentials with the same rigour, policy control, and audit trail that they apply to their existing PKI credentials. Without unified management, FIDO credentials become a separate, ungoverned credential type with its own lifecycle, creating visibility gaps and inconsistent security policies.
Organisations need the ability to manage both PKI and FIDO credentials from a single platform, applying consistent policies to both, maintaining a complete view of all credentials issued to each user, and ensuring that credential revocation applies across all credential types when required.
What It Does
MyID FIDO management brings FIDO and passkey credentials under the same governance framework as PKI credentials. Administrators manage FIDO credential registration, issuance, and revocation through the same console used for smart cards and certificates. Policy controls define which users can register FIDO credentials, which FIDO authenticators are permitted, and under what conditions FIDO credentials can be used.
The platform maintains a unified view of all credentials issued to each user — smart cards, certificates, derived mobile credentials, and FIDO authenticators — enabling consistent lifecycle management and ensuring that security events such as user departure or credential compromise are addressed across all credential types simultaneously.
How Unsung Helps
Unsung helps clients plan their FIDO adoption alongside existing PKI, ensuring that both credential types are managed within a unified governance framework. Our PKI Consultancy service provides guidance on authentication strategy, credential governance, and the practical steps for introducing FIDO alongside established smart card PKI environments.
Related Unsung Services
PKI Consultancy — Advisory on authentication strategy and unified credential governance.
PKI Design & Build — Design and implementation of combined PKI and FIDO credential environments.
