Table of Contents
The CodeB Credential Provider V2 is a security-first authentication platform that enables passwordless, two-factor (2FA), and three-factor (3FA) Windows logon using tokens like NFC cards, TOTP, USB memory, and OpenID. To fine-tune the user experience and security posture, administrators can configure the provider via specific registry keys.
Registry Path for Configuration #
All customization settings are located under:
Computer\HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\CodeB\Config
Below is a detailed explanation of supported registry keys under the [Config] section:
Core UI and Behavior Settings #
| Registry Key | Type | Function |
|---|---|---|
ActiveField | DWORD | Automatically sets the primary input field (e.g., username or token) to active upon provider load. |
HideOptionalSecretField | DWORD | If set to 1, hides the “Optional Secret” field from the credential tile. |
AlwaysShowOptionalSecretField | DWORD | If set to 1, ensures the “Optional Secret” field is always visible, even if hidden by other settings. |
HideTOTPField | DWORD | If set to 1, disables visibility of the Time-based One-Time Password (TOTP) input field. |
HideUsernameField | DWORD | If set to 1, hides the username field. Used in environments with card-based identity retrieval. |
HideShowCharacters | DWORD | If set to 1, hides the checkbox allowing users to reveal masked characters in password or OTP fields. |
Use_AD_altSecurityIdentities | DWORD | Enables mapping of tokens to users via Active Directory’s altSecurityIdentities attribute. Ideal for enterprise deployments. |
