This section describes the operations for configuring authenticator registration and deletion operations that can be performed with the YubiOn FIDO Logon setting tool.
It is possible to limit the operations that end users can perform with the setting tool.
Select Authentication Service > Group Policy from the menu.
Set value: Select one of the following
|Set value||Authenticator Registration||Deleting authenticators|
|Forbid registration and deletion||not allowed||not allowed|
|Allow registration only||allowed||not allowed|
|Allow registration and deletion||allowed||allowed|
In a typical scenario, the end user registers the authenticator, so the setting is made so that the registration operation can be performed.
In the scenario where the administrator registers the authenticator and you do not want the end user to operate it, you can set the setting to prohibit registration.