---
title: "Enable Fingerprint Authentication with Auth0"
description: "Learn how to enable fingerprint authentication for login with Auth0."
authors:
  - name: "Will Johnson"
    url: "https://auth0.com/blog/authors/will-johnson/"
date: "Feb 28, 2022"
category: "Developers,Tutorial,Biometrics"
tags: ["biometrics", "authentication", "login"]
url: "https://auth0.com/blog/enable-fingerprint-authentication-with-auth0/"
---

# Enable Fingerprint Authentication with Auth0

Over the years, how you prove your identity and login to websites has changed. From using only a password, using a password plus a code sent your mobile device, using authenticator apps, to even going _passwordless_ by having an email sent to you and logging in there. Each iteration is an attempt to keep your identity safe and secure. 

WebAuthn was announced as the recommended standard for passwordless login in recent years. WebAuthn is a browser-based API that allows secure user authentication by using registered devices (phones, laptops, etc.) as authentication factors. This blog post will show you how fast you can enable device biometrics for your users to log in using the Auth0 dashboard.

## What You'll Need

To enable and test out fingerprint authentication, you will need a few things:

* **Auth0 Account.** Sign up for a <a href="https://a0.to/blog_signup" data-amp-replace="CLIENT_ID" data-amp-addparams="anonId=CLIENT_ID(cid-scope-cookie-fallback-name)">free Auth0 account</a> if you don't have one.
* **Any application that uses your Auth0 tenant to provide Universal Login.** Any web-based, mobile, or desktop application will do, just as long as it is one of your tenant's applications. If you don't have any applications that use Auth0 for authentication, you can download one from the [Auth0 Quickstarts](https://auth0.com/docs/quickstarts/) page.
* **WebAuthn Compatible Device** A computer or smartphone with biometrics built-in (Touch ID on Mac, for example).

## Enable Biometric Login Flow

On the left-side menu of the Auth0 dashboard, click **Authentication>Authentication Profile**. The _Authentication Profile_ page is where you choose how users will authenticate their identity when logging in to your application. 

![Auth0 Dashboard Side Menu](https://images.ctfassets.net/23aumh6u8s0i/646bZGVEd7cE2iyRioHonq/ac74ca497a3f913cecdeedc05f9a1abc/auth0_dashbord.png)

You'll have the option to choose between three different login flows:

* **Identifier + Password** - a single login screen that asks for the username and password.
* **Identifier + First** - has two screens. One for the users to enter an identifier, then another screen for the password.
* **Identifier First + Biometrics** - allows users to sign in using face or fingerprint recognition instead of a password.

Click **Identifier First + Biometrics** then click **Save**. This sets the login box to ask for an identifier first, like an email address, then ask for the biometrics identifier like a fingerprint. 

After a device is registered for authentication, this creates a secure relationship between the application and the device, allowing users to login in a secure manner. Click **Confirm** on to enable Webauthn device biometrics.

![WebAutn Device Biometrics Confirmation Modal](https://images.ctfassets.net/23aumh6u8s0i/54D7A7i1R4hSgrTsvu9MVK/cdfeb155c3eed9fad84be4cb7e73c0b7/webauthn_confirmation.png)

The following user who logs in or signs up will be prompted to enroll their device for quick and secure login. Let's test out this flow from the users' perspective.

> Learn more about WebAuthn and test out using hardware authentication with the interactive demo on [webauthn.me](https://webauthn.me/). A site maintained by Auth0.

## Test WebAuthn Enrollment

The fastest way to test this is right on the _Authentication Profile_ page. In the upper right-hand corner, click **Try**.

![Auth0 Dashboard Authentication Profile Page](https://images.ctfassets.net/23aumh6u8s0i/155RocmMWOUTnwRI6vYDqP/f5cde8f2a017d5a37b154538edf97f9a/try_button.png)

This will bring up the Auth0 universal login box. You'll log in with a username and password as normal. Once those credentials are verified, you'll be met with the "Login in faster on this device" prompt. Which lets you know that you use your fingerprint or face recognition to log in. Click **Continue**

![Auth0 Long In Faster Screen](https://images.ctfassets.net/23aumh6u8s0i/6nQuQcDC6aLDDJBGSvIieK/3180262b363896a99d371c0229cc28c4/Screen_Shot_2022-02-23_at_4.37.39_PM.png)

Clicking continue brings up a prompt from your device alerting you that your browser is trying to verify your identity. You then register your fingerprint using something like Touch ID if you're using a Mac.

![macOS Touch ID prompt](https://images.ctfassets.net/23aumh6u8s0i/45MRt2zzkxol16HSy8aNuy/9daf52c856f8d176182c90f719007ff4/Screen_Shot_2022-02-23_at_4.38.15_PM.png)

Finally, it will ask you to name your device; click **Continue** the next screen lets you know that the device is successfully registered. 

![Device Registered Confirmation Page](https://images.ctfassets.net/23aumh6u8s0i/6eEg5vwZoXM4ApVeHFhpMv/dfd5b6d077af23b74f1889f689c31d46/Screen_Shot_2022-02-24_at_11.51.43_AM.png)

Once a device is registered, the user will no longer log in with a password. They will enter their email address and log in with their fingerprint! How cool is that?

> Users can still log in with their password as a backup. 

## Benefits of WebAuthn

Using WebAuthn for passwordless login has many benefits. 

* Customers don't have to worry about remembering passwords or requesting passcodes to be sent to a separate device
* Removes barriers to customers to sign in/up for applications 
* Lower risks of impersonating identity because it's hard to steal a device where the biometrics are stored.
* Maintain customer trust by using a secure authentication method 

## Conclusion 

Moving towards more advanced authentication methods like WebAuthn is a great way to delight your users and build trust in your company. Keeping users safe from potential security exploits is a hard job. Data breaches are becoming common. Auth0 is staying up to date with web security standards and creating solutions that integrate seamlessly into your application. 

To learn more about WebAuthn and how to use it with Auth0, check out the [FIDO Authentication with WebAuthn Docs](https://auth0.com/docs/secure/multi-factor-authentication/fido-authentication-with-webauthn)