Touch ID login in Windows

Discussion in 'Parallels Desktop for Mac Feature Suggestions' started by saf, Oct 17, 2017.

  1. AlexL26

    AlexL26 Bit Poster

    Since Parallels desktop 17 already supports TPM2.0, why not passthrough the mac host touch-ID sensor to Windows.
    hux and Anthony Fahey like this.
  2. Hossam

    Hossam Bit Poster

    Windows hello will use the Face ID or FingerPrint device in the Laptop to sign the user in, if you can manage to make windows detect the fingerprint ad use it as a hello device, it will be a vey good forward step and make our life easier. Thanks a lot.
  3. RonJ1

    RonJ1 Bit Poster

    I also would benefit from Windows Hello support thru the camera shared with the mac. Our windows VM's auto lock screen for their own security and would be nice to have the WinHello login. Apple will be bringing FaceID to the mac soon (so I hear) - that helps at the mac side. Currently running windows 10 & 11 on an M1 Mac Mini.
  4. EvanL2


    Using auto login or disabling Windows passwords may be convenient, but it is bad advice from any security perspective -- no matter how well your Mac is locked down. This is also a problem for VM's tied to corporate domains with policies in place. Providing actual fingerprint reader support for Windows/VM's is the only proper way to go about it.
  5. Andreyasitnikov


    Chiming in, Touch ID on Mac doesn't support (AFAIK) direct fingerprint reading. It only supports asking the OS to check the fingerprint, and then the OS tells Parallels whether it matched or not. A potential solution could be:
    1. Emulate a Fingerprint reader attached to VM (the "fake fingerprint reader")
    2. Upon Touch ID "enabling", a RANDOM fingerprint (let's call it the fake fingerprint) is generated and stored somewhere safe, e.g. keychain
    3. When Windows requests authentication, the fake fingerprint reader is asked to scan a fingerprint. When this is received, Parallels asks the OS to verify the fingerprint. If the fingerprint matches, Parallels decrypts the fake fingerprint stored in the keychain and sends it to the VM. It will always be the same.
    4. If it doesn't match (user clicks "use password instead"), fake fingerprint reader sends a different, random fingerprint that doesn't match. It will always be different, therefore it will never match, therefore Windows will prompt for password instead.
  6. Krysalisco

    Krysalisco Bit Poster

    Select the Start. button.
    Select Settings > Accounts.
    Click Sign-in options on the left.
    Click Get started.
    Enter your PIN.
    Scan your finger on the fingerprint reader.
    Click Add Another to repeat the process with another finger, or close the program.
  7. AdahA


    There are other benefits in having TouchID be shown as a fingerprint reader in Windows, such as integration with third party applications that implement authentication/signing with fingerprint readers.
    Anthony Fahey likes this.
  8. hux

    hux Bit Poster

    即使使用外部 USB 指纹设备也可正常工作
  9. RajDotKapoor

    RajDotKapoor Bit Poster

    So, after all these years, has anyone been able to figure how to get this to work? hello, parallels? knock knock :)
    N3 Chaos likes this.
  10. N3 Chaos

    N3 Chaos

    As an addendum and reviving this thread for a VERY useful feature, Windows 11 seems to require a passcode to sign in, so would love to see the fingerprint sensor/power button added as a function to allow easy sign-in. Parallels, this should have been a feature that was implemented or at least noted as to why it is impossible when W11 came out.

Share This Page