The growing number of cyber threats and expectations of seamless digital access have exposed the limitations of password-based authentication. Traditional methods are vulnerable to phishing attacks, password reuse and usability issues. In order to increase sustainable adoption, security needed to be improved without compromising user experience. This thesis was focused on a mid-sized, regulated enterprise preparing for passwordless adoption. The aim was to support this effort by comparing and contrasting solutions that align with operational and compliance requirements.

The approach covered the examination of various passwordless authentication methods, such as biometrics, hardware tokens and mobile authenticators, within a medium-sized company with a Microsoft application landscape. The methods were compared using criteria such as security, usability, cost, operational effort and fallback options. The integration of these methods with existing infrastructure, as well as phased rollout strategies, were considered alongside potential risks in order to identify practical and secure solutions.

Beyond implementation, this thesis emphasised the transition from static passwords to adaptive, cryptographically anchored systems. Although not universally applicable, passwordless authentication demonstrated to offer a strategic advantage to organisations, providing practical guidance to IT leaders seeking to modernise identity management. The combination of Temporary Access Pass (TAP), Windows Hello and the Microsoft Authenticator offered the best balance of security, user experience and operational feasibility for the given environment. The proposed solution integrates with Microsoft Entra ID, Windows devices, mobile management and can be implemented in phases to manage the onboarding process and workload. Key risks, such as device loss and user friction, were identified and mitigation strategies were proposed.