Update beta authenticationMethodsRegistrationCampaignIncludeTarget to allow Fido2 for targetedAuthenticationMethod (#9890)

* Update beta file, add changelog entry, and update What's New for targetedAuthenticationMethod Fido2 support

Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs-contrib/sessions/6eb35719-ea81-4a63-9c13-1d9ac1b0a8bf

Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Faith Moraa Ombongi <ombongi.moraa.fe@gmail.com>

* Apply suggestions from code review

Co-authored-by: Faith Moraa Ombongi <ombongi.moraa.fe@gmail.com>

* Update whats-new-overview.md

* Add changelog

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com>
Co-authored-by: Faith Moraa Ombongi <ombongi.moraa.fe@gmail.com>

Author: Copilot

api-reference/beta/resources/authenticationmethodsregistrationcampaignincludetarget.md

@@ -6,7 +6,7 @@ ms.reviewer: intelligentaccesspm
 ms.localizationpriority: medium
 ms.subservice: "entra-sign-in"
 doc_type: resourcePageType
-ms.date: 07/22/2024
+ms.date: 05/06/2026
 ---
 
 # authenticationMethodsRegistrationCampaignIncludeTarget resource type
@@ -21,7 +21,7 @@ Represents the users and groups that are targeted for [authentication method reg
 |Property|Type|Description|
 |:---|:---|:---|
 |id|String|The object identifier of a Microsoft Entra user or group.|
-|targetedAuthenticationMethod|String|The authentication method that the user is prompted to register. The value must be `microsoftAuthenticator`.|
+|targetedAuthenticationMethod|String|The authentication method that the user is prompted to register. The value can be `Fido2` or `microsoftAuthenticator`.|
 |targetType|authenticationMethodTargetType|The type of the authentication method target. The possible values are: `user`, `group`, `unknownFutureValue`.|
 
 ## Relationships

changelog/Microsoft.AuthenticationMethodsPolicy.json

@@ -1,5 +1,23 @@
 {
   "changelog": [
+    {
+      "ChangeList": [
+        {
+          "Id": "a38378c7-f9c4-4995-9869-d664e67c082c",
+          "ApiChange": "Property",
+          "ChangedApiName": "targetedAuthenticationMethod",
+          "ChangeType": "Change",
+          "Description": "Updated the **targetedAuthenticationMethod** property of the [authenticationMethodsRegistrationCampaignIncludeTarget](https://learn.microsoft.com/en-us/graph/api/resources/authenticationmethodsregistrationcampaignincludetarget?view=graph-rest-beta) resource to support `Fido2` in addition to `microsoftAuthenticator`. Organizations can now use registration campaigns to nudge users to register and sign in with phishing-resistant passkeys (FIDO2).",
+          "Target": "authenticationMethodsRegistrationCampaignIncludeTarget"
+        }
+      ],
+      "Id": "a38378c7-f9c4-4995-9869-d664e67c082c",
+      "Cloud": "Prod",
+      "Version": "beta",
+      "CreatedDateTime": "2026-05-21T09:35:24.0000000Z",
+      "WorkloadArea": "Identity and access",
+      "SubArea": "Identity and sign-in"
+    },
     {
       "ChangeList": [
         {

concepts/whats-new-overview.md

@@ -44,6 +44,7 @@ Use the [deviceRegistrationPolicy](/graph/api/resources/deviceregistrationpolicy
 - Enhanced the [x509CertificateAuthenticationMethodConfiguration](/graph/api/resources/x509certificateauthenticationmethodconfiguration) resource type with the following capabilities for certificate-based authentication (CBA):
     - Scoping CBA to specific certificate authorities and restrict which groups of users can authenticate using certificates from those CAs.
     - Controlling whether issuer hints are sent to the client to filter the certificates shown in the certificate picker.
+- Updated the **targetedAuthenticationMethod** property of the [authenticationMethodsRegistrationCampaignIncludeTarget](/graph/api/resources/authenticationmethodsregistrationcampaignincludetarget) resource to support `Fido2` in addition to `microsoftAuthenticator` for authentication method registration campaigns. Organizations can now use registration campaigns to nudge users to register and sign in with phishing-resistant passkeys (FIDO2).
 
 ### Mailbox import and export
 
@@ -82,6 +83,7 @@ Added the [approverDelegate](/graph/api/resources/approverdelegate?view=graph-re
 - Added the **blueprintId** and **source** agent-descriptive properties to [agentRiskDetection](/graph/api/resources/agentriskdetection?view=graph-rest-beta&preserve-view=true) and [riskyAgent](/graph/api/resources/riskyagent?view=graph-rest-beta&preserve-view=true) resources.
 - Added the [onVerifiedIdClaimValidationCustomExtension](/graph/api/resources/onverifiedidclaimvalidationcustomextension?view=graph-rest-beta&preserve-view=true) and [onVerifiedIdClaimValidationListener](/graph/api/resources/onverifiedidclaimvalidationlistener?view=graph-rest-beta&preserve-view=true) resource types and associated methods to support custom logic for claim validation from Verified ID credential presentations during authentication flows through Microsoft Entra custom authentication extensions in External ID.
 - Added support for Microsoft 365 cross-tenant access policy capabilities that allow administrators to control access to Microsoft 365 resources and data when collaborating with external organizations. Use the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources with the new **m365Capabilities** relationship to manage capabilities including profile sharing, calendar sharing, migration, mail tips, and Places booking across organizational boundaries.
+- Updated the **targetedAuthenticationMethod** property of the [authenticationMethodsRegistrationCampaignIncludeTarget](/graph/api/resources/authenticationmethodsregistrationcampaignincludetarget?view=graph-rest-beta&preserve-view=true) resource to support `Fido2` in addition to `microsoftAuthenticator` for authentication method registration campaigns. Organizations can now use registration campaigns to nudge users to register and sign in with phishing-resistant passkeys (FIDO2).
 
 ### People and workplace intelligence | People admin settings