Passkeys
Passkeys let people sign in without typing a password. The credential lives securely on the user's device and uses Face ID, Touch ID, Windows Hello, or another supported device prompt.
What users do
When passkeys are enabled, users manage their own keys from the Profile page. They can add a new passkey, rename it, or remove it whenever they no longer want to use that device for sign in.
This keeps the day-to-day experience simple for users while still offering a stronger and more phishing-resistant sign-in method.
User area where a person can add, review, rename, and remove their own passkeys.
How access works
If passkeys are enabled for your account, you will see the passkey controls in Profile. If they are not enabled yet, the controls stay hidden until an administrator turns the feature on.
Recommended setup
- Enable passkeys only after you have verified HTTPS and browser support.
- Keep at least one fallback sign-in method available for recovery.
- Let users add passkeys from Profile as soon as the feature is turned on.
- Explain which devices and browsers your team supports most reliably.