RSA, a leader in identity security, announced significant advancements in its passwordless solutions at the Gartner IAM Summit, focusing on securing desktop logon, extending coverage for highly-regulated industries, and integrating passwordless capabilities into customized web experiences.

RSA CEO Greg Nelson stated, “Unlike niche competitors who focus on individual use cases, RSA delivers the broadest range of passwordless coverage—from cloud to desktop to datacenter—that provides organizations with a unified passwordless experience. This comprehensive approach not only reduces security gaps but also simplifies management and compliance.”

Securing desktop and laptop access has become a critical necessity, particularly with the increase in remote and hybrid work models, which have expanded the exposure of sensitive assets beyond traditional firewalls. RSA President, Chief Product and Strategy Officer Jim Taylor highlighted this, noting, “Desktop devices represent a significant risk given how many users work remotely. Passwords fall short everywhere, and desktop logon is no exception. Yet most organizations are forced into using them because the industry has failed to deliver robust, user-friendly solutions. RSA’s new passwordless capabilities close this gap, going deeper than any competitor to provide secure, seamless access everywhere our customers need it.”

Following RSA’s second consecutive return to the 2025 Gartner® Magic Quadrant™ for Access Management, the company’s latest suite of passwordless enhancements introduces new standards for protecting desktops and laptops. These include contactless tap-and-go logon using the RSA iShield Key 2 series, enabling authentication with a simple tap for industries like healthcare. Additionally, RSA has expanded options for offline passwordless logon, now supporting OTP and FIDO2, with planned support for offline QR codes beginning January 2026. To further enhance security, optional proximity verification via Bluetooth-based checks for QR code logins will be introduced in January 2026, confirming the authenticating device and computer are in the same location. Passwordless logon is now also supported for macOS, allowing organizations to implement a unified passwordless experience across both macOS and Windows environments.

These enhancements are integrated into RSA ID Plus, the company’s complete identity and access management security platform, and RSA ID Plus for Microsoft M1, which provides an enhanced security layer for Microsoft Entra ID. Both solutions extend passwordless capabilities across Microsoft, legacy, OT, and non-Microsoft environments, including data centers, mainframes, macOS, AD-joined devices, Entra-joined PCs and servers, and other critical infrastructure.

For government agencies, healthcare, energy, and other highly regulated industries, RSA offers high-assurance passwordless solutions that secure digital and physical access. The RSA iShield Key 2 meets MIFARE standards for physical access, mitigates zero-day threats with updatable firmware, and complies with FIPS 140-3, Executive Order (EO) 14028, OMB M-22-09, and M-24-14 requirements.

Further enhancements to the RSA API now enable secure passwordless authentication for custom portals, allowing organizations to embed passkey registration and promote usage within their custom web experiences for partners and external users.

RSA will also highlight new Identity Security Posture Management (ISPM) capabilities, which leverage AI-driven insights to proactively identify identity risks before they escalate, providing organizations with a clear understanding of their security posture and enabling decisive action across complex environments. RSA Product Manager Kenn Chong is scheduled to detail phishing-resistant passwordless strategies and credential lifecycle security during a Gartner IAM session on Monday, December 8, at 11:45 AM CST.