Lastly, the lack of common standards for biometric hardware limit the capability of Pega to support biometric authentication out of the box. Or as my colleague @AndreasSittler put it:
Pega provides a few authentication types OOTB.
 PRPC internal (this is what you are using on your SC image) with and without SSL,
 container-managed (if PRPC is run inside a JEE container),
[3a] If it is custom, PRPC provides ootb-support for LDAP-based systems.
[3b] If it is custom and not LDAP (like for any SSO solution as an example), you will have to customize activities (or more) within PRPC, probably even writing a custom servlet.
Anything that involves hardware will fall into the category [3b], as it will most likely require some sort of communication with the system that connects to the hardware itself, _or_, with the hardware itself.