The passwordless feature has been just added onto Nextcloud V19. It allows authentication without a password. WebAuthn's support makes it possible using a Fido2 USB key. You'll find here the step by step guide to enable your Nextcloud account with the password-less authentication. The guide was originally published by sosandroid, in English and French
A server or laptop running Docker is used here. There are other ways to test, we chose that one. You'll also need a valid domain with a valid SSL cert (not self-signed). This guide is based on a test container using the docker-compose.yaml. It has been launched using the following command line.
NEXTCLOUD_URL=mydomain.tld NEXTCLOUD_ADMIN_USER=admin NEXTCLOUD_ADMIN_PASSWORD=mypassword docker-compose up
The following key has been tested: Token2 T2F2 ALU for this test.
Before you can enrol the FIDO2 key a PIN code needs to be set. This can be done using standard control panel applet (available with Windows 10 starting 1903 release)
You can also use the TOKEN2 Companion app to set the PIN-code on your FIDO2 Key.
Set your PIN code. 1234 for instance.
| Nextcloud | System | Browser | Version | Result |
|---|---|---|---|---|
| 19.0.0.12 | Windows 10 | Firefox | 79.0b2 | Fail |
| 19.0.0.12 | Windows 10 | Chrome | 83.0 | Fail |
| 19.0.0.12 | Windows 10 | Edge | 83.0 | Success |
| 19.0.0.12 | Windows 10 | Vivaldi | 3.1.1929.45 | Success |
| Nextcloud | System | Browser | Version | Result |
|---|---|---|---|---|
| 19.0.0.12 | Windows 10 | Firefox | 79.0b2 | Success |
| 19.0.0.12 | Windows 10 | Chrome | 83.0 | Success |
| 19.0.0.12 | Windows 10 | Edge | 83.0 | Success |
| 19.0.0.12 | Windows 10 | Vivaldi | 3.1.1929.45 | Success |
| 19.0.0.12 | MacOS 10.15.5 | Firefox | 78.0 | Success |
| 19.0.0.12 | MacOS 10.15.5 | Safari | 13.1.1 | Success |
| 19.0.0.12 | MacOS 10.15.5 | Chrome | 83.0 | Success |
