This session will cover lessons learned, user experience, policy choices and technical implementation considerations made by IBM for employee intranet login with passkeys. You will hear from both business (Chris) and technical (Shane) subject matter experts. On the business side Chris will cover topics such as corporate authentication policy, employee education and awareness, and operational challenges associated with multiple platforms and heritage applications. Shane's technical perspective will detail WebAuthn registration and authentication experiences, and how a risk-based approach is employed for conditional multi-factor authentication even after passkey authentication. IBM is a large multi-national company with hundreds of thousands of employees spread across the world. IBM has technical SMEs (Shane in this case) working within the FIDO Alliance and w3c WebAuthn standards groups. IBM builds and deploys FIDO authentication solutions for both internal use and for external customers. This set of ingredients provides a unique and valuable opportunity for attendees to learn from IBM's passkey authentication experience for employees. The session would be valuable to anyone considering passkey deployment in the enterprise.