Disclosed is a method and apparatus for registering physical security credentials of a user at a device (150) forming part of a networked computer system (100). The method detects (122, 301) user identifying information from physical security credentials presented by the user at the device. The device then determines (302) whether the detected identifying information exists at a reference location (135). If the identifying information does not exist in reference location, authentication of the read identifying information for the user is performed by associating the identifying information with a username and password (140) entered by the user at the device. The reference location is then updated with the authenticated identifying information corresponding to the user.