Support Authentication and Authorization Pt2 (Storing Biometric info on a AD Server?

---

Hi Mike and ITPro Staff:

I am watching part in a series of the MCSA 70-697, on Support Authentication and Authorization part 2, Mike the Presenter (SME) was saying that maybe in the future that Biometric info could be stored on a AD Server (Active Directory Server) to me that seems scary, it might simplify the authentication process, but what the user information and privacy in regards to this, what happens if someones gets a hold of this information? maybe i watch too many spy movies, but the security and privacy information on this matter worries, the internet has way too much information on people.

Dan L,.

Hey @Daniel-Loyer ,

My crystal ball was a little cloudy that day. Currently, with Windows Hello, biometric data does not roam and is never sent to an external server. Too big of a security risk, as you have surmised.

https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise