Microsoft introduces Passkeys support for consumer accounts
Microsoft is celebrating World Password Day by announcing a new feature. All Microsoft consumer accounts now support Passkeys.
Microsoft first added support for Passkeys in Windows 11 last year, but it only supported a few services, including Gmail. Now, the company has enabled Passkeys support for all consumer accounts, i.e. home users. You can use the passwordless login method to sign in to your Microsoft accounts. It seems rather strange that it has taken Microsoft a full year to add support for its own services.
Passkeys can be used to sign in to Microsoft apps and websites on desktop and mobile browsers. You may also use it with Microsoft 365 and Copilot. Passkeys contain your account credentials and consist of a cryptographic key pair, one of which is stored securely on your device, while the other one is saved by the website. Since the sign in method require both keys to unlock access to an account, passkeys are phishing-resistant, as opposed to traditional passwords which can be stolen, leaked, hacked, etc.
How to set up a Passkey for your Microsoft account
1. Visit the Security page for your Microsoft account.
2. You will be greeted by a pop-up that presents you with various options.
3. Select the first one, which allows you to sign in with a passkey with your face or fingerprint, or set up a PIN, or a security key.
4. Next, you will need to select where the passkey should be saved. There are three methods to save the passkey. You may use your biometric data, which requires a phone or set up a PIN, or choose the security key option if you use something like a YubiKey.
Note: You can also save your Passkey in third-party apps like Bitwarden Password Manager. But, for the sake of this tutorial, I saved my Passkey using Face ID on my iPhone.
5. Scan the QR code displayed on the screen with your phone's camera app, and it should prompt you to save a passkey. Proceed, and it should save the login credentials securely on your device.
6. Once you have set it up, you can use the passkey to log in to websites and apps without entering your password.
And yes, it works across all browsers including Chrome, Edge, Firefox, etc. If you lose your device, you can sign in to your account using your password, and revoke the passkey. Passkeys can be synced with devices The mobile versions of Microsoft's apps do not support passkeys yet, the company's announcement mentions that it will roll out the feature for its Android and iOS apps in the coming weeks.
Google says Passkeys were used 1 Billion times in less than a year
On a side note, Google has published some details about Passkeys. The Mountain View company says that passkeys were used to authenticate users more than 1 billion times across over 400 million Google Accounts, in less than a year. Google says it will roll out support for passkeys in its Advanced Protection Program (APP), which protects individuals at high risk of targeted attacks such as campaign workers and candidates, journalists, human rights workers, etc.
Passkeys are clearly becoming popular across platforms. Password managers including Bitwarden, KeePassXC, 1Password and Dashlane have added support for Passkeys. WhatsApp Messenger recently announced that it has added an option to use the passwordless login method in its iOS mobile app, having added it to its Android app last year.
Do you use Passkeys?
go ahead and use it it has been hacked go look it up PASSKEY HAS BEEN HACKED THEY are just letting hackers steal more of your info
this has been hcack and microsoft know it
The risk with passkeys is that if the mobile is lost or if the mobile phone stops working due to any reason, you have no option of authenticating. Is there any way out Martin?
Syncing or backups, but this needs to be supported.
go here and read https://techcrunch.com/2023/07/17/microsoft-lost-keys-government-hacked/
when they force me to us passkey i will turn off my internet because passkeys have been hacked go online and look it up and no windows 11 has not been fix they don’t how so they just keep adding junk
all of microsft core was stole by hackers that used ai to steal it and you will lose all of your life because dumb microsoft and if you update to Windows 11 version 24H2 hackers will steal all of your info i have had all of a mess windows 11 so much it is bad so if it happens again i am going back to windows 10 that works did not have this mess with windows 10 and windows 11 is one big flop
Not using Passkeys yet. I want to only use a PIN but it appears I would need a different PIN for each device I use. Then what happens if I want to use a new device – would I have to go through some sort of convoluted process to get to my sites?
So in addition to all the other telemetry they collect Microsoft will now know what you look like and whether you’re young or old. That will help them enormously to personalize the ads which will start to arrive in your inbox no doubt.
I have a piece of sticky tape covering the camera on my laptop so I definitely won’t be using the Face option.