The new Azure AD Temporary Access Pass (TAP) is available as of today. The new preview feature makes it possible to configure a temporary access password. The main goal to go to completely passwordless without a configured password.

What is the new Temporary Access Pass feature?

Temporary access pass is a new way for creating and onboarding new users with a kind of temporary password for the user. With temporary access pass, it is possible to implement passwordless authentication and MFA, SSPR, Windows Hello methods.

The Temporary Access Pass (TAP) function will set a temporary password for the users with an expiration time.

Passwordless authentication methods, such as FIDO2 and the passwordless phone sign-in via the Microsoft Authenticator app, allow users to securely log in without a password. Before the Azure AD Temporary Access Pass feature, enrolling new and resetting current passwordless authentication methods was not the most user-friendly part.

TAP is a time-limited passcode issued by an admin and can be used to onboard other passwordless authentication methods. The main reason; TAP makes recovery easier when a user has lost or forgotten their strong passwordless authentication. The feature is a good start for a completely passwordless environment in the function and stops the use of permanent passwords within the environment.

TAP also makes recovery easier when a user has lost or forgotten their strong authentication factor such as a FIDO2 security key or Microsoft Authenticator app, but needs to log in to register new strong authentication methods. It may sound a bit complicated if you have no ICT knowledge, but you will find that it saves a lot of time and irritation for the user.

This is a super handy feature that we love to use for our customers. #superlogical right? May we help you further with this? take contact on with our team.