Touch ID login in Windows

Since Parallels desktop 17 already supports TPM2.0, why not passthrough the mac host touch-ID sensor to Windows.

 

Windows hello will use the Face ID or FingerPrint device in the Laptop to sign the user in, if you can manage to make windows detect the fingerprint ad use it as a hello device, it will be a vey good forward step and make our life easier. Thanks a lot.

 

I also would benefit from Windows Hello support thru the camera shared with the mac. Our windows VM's auto lock screen for their own security and would be nice to have the WinHello login. Apple will be bringing FaceID to the mac soon (so I hear) - that helps at the mac side. Currently running windows 10 & 11 on an M1 Mac Mini.

 

Using auto login or disabling Windows passwords may be convenient, but it is bad advice from any security perspective -- no matter how well your Mac is locked down. This is also a problem for VM's tied to corporate domains with policies in place. Providing actual fingerprint reader support for Windows/VM's is the only proper way to go about it.

 

Chiming in, Touch ID on Mac doesn't support (AFAIK) direct fingerprint reading. It only supports asking the OS to check the fingerprint, and then the OS tells Parallels whether it matched or not. A potential solution could be:

1. Emulate a Fingerprint reader attached to VM (the "fake fingerprint reader")
2. Upon Touch ID "enabling", a RANDOM fingerprint (let's call it the fake fingerprint) is generated and stored somewhere safe, e.g. keychain
3. When Windows requests authentication, the fake fingerprint reader is asked to scan a fingerprint. When this is received, Parallels asks the OS to verify the fingerprint. If the fingerprint matches, Parallels decrypts the fake fingerprint stored in the keychain and sends it to the VM. It will always be the same.
4. If it doesn't match (user clicks "use password instead"), fake fingerprint reader sends a different, random fingerprint that doesn't match. It will always be different, therefore it will never match, therefore Windows will prompt for password instead.

 

Select the Start. button.
Select Settings > Accounts.
Click Sign-in options on the left.
Click Get started.
Enter your PIN.
Scan your finger on the fingerprint reader.
Click Add Another to repeat the process with another finger, or close the program.

 

There are other benefits in having TouchID be shown as a fingerprint reader in Windows, such as integration with third party applications that implement authentication/signing with fingerprint readers.

 

即使使用外部 USB 指纹设备也可正常工作
没有理由不支持更好的触摸ID

 

So, after all these years, has anyone been able to figure how to get this to work? hello, parallels? knock knock

 

As an addendum and reviving this thread for a VERY useful feature, Windows 11 seems to require a passcode to sign in, so would love to see the fingerprint sensor/power button added as a function to allow easy sign-in. Parallels, this should have been a feature that was implemented or at least noted as to why it is impossible when W11 came out.