What is a Microsoft passkey?

A Microsoft passkey is a passwordless authentication method using cryptographic keys stored on your device. Instead of typing a password, you authenticate using biometrics (fingerprint, face recognition) or device PIN. Passkeys are phishing-resistant and more secure than traditional passwords.

Where are Microsoft passkeys stored?

Passkeys are stored securely on your device in a hardware-backed security module. On Windows, they're stored in Windows Hello. On iPhone/iPad, they're in iCloud Keychain. On Android, they're in Google Password Manager. Passkeys can sync across your devices through these platform services.

Can I use passkeys on multiple devices?

Yes, you can register multiple passkeys for your Microsoft account, one for each device. Platform passkeys (stored in iCloud or Google) can also sync across devices in the same ecosystem. You can have passkeys on your phone, laptop, and tablet simultaneously.

Are passkeys more secure than passwords?

Yes, passkeys are significantly more secure. They're phishing-resistant because the key never leaves your device. There's no password to steal, guess, or leak in data breaches. Each passkey is unique per site, preventing credential reuse attacks that affect passwords.

What happens if I lose my device with my passkey?

You can still sign in using other registered authentication methods like Microsoft Authenticator, security keys, or backup passkeys on other devices. You can also remove the lost device's passkey from your Microsoft account security settings to prevent unauthorized access.

Do passkeys work with Microsoft work/school accounts?

Yes, passkeys work with Microsoft Entra ID (Azure AD) accounts for work and school. However, your organization must enable passkey authentication in their security policies. Contact your IT administrator if passkeys aren't available for your work account.

How to Set Up Microsoft Passkey for Passwordless Sign-In

Microsoft passkeys let you sign in to your Microsoft account without a password using biometrics or device PIN. Passkeys are more secure than passwords and resistant to phishing attacks. This guide shows how to set up passkeys across all your devices.

What You Need

Microsoft account (personal, work, or school)
Supported device:
- Windows 10/11 with Windows Hello
- iPhone/iPad with iOS 16+ and Face ID/Touch ID
- Android device with Android 9+ and biometrics
- Hardware security key (FIDO2 compatible)
Modern browser: Edge, Chrome, Safari, or Firefox

Set Up Passkey on Windows

Step 1: Enable Windows Hello

First, ensure Windows Hello is set up:

Open Settings > Accounts > Sign-in options
Set up at least one Windows Hello method:
- Facial recognition (requires compatible camera)
- Fingerprint (requires fingerprint reader)
- PIN (always available)

Step 2: Add Passkey to Microsoft Account

Go to account.microsoft.com/security
Sign in to your Microsoft account
Under Ways to sign in, find Passkey
Click Add a new way to sign in > Face, fingerprint, PIN, or security key
Select Windows device
Windows Hello prompts for authentication
Complete face scan, fingerprint, or PIN entry
Name your passkey (e.g., "Work Laptop")

Set Up Passkey on iPhone/iPad

Open Safari and go to account.microsoft.com/security
Sign in to your Microsoft account
Tap Add a new way to sign in
Select Face, fingerprint, PIN, or security key
Choose iPhone, iPad, or Android device
iOS prompts to create a passkey
Authenticate with Face ID or Touch ID
Passkey saves to iCloud Keychain

Note: Your passkey syncs across Apple devices signed into the same iCloud account.

Set Up Passkey on Android

Open Chrome and go to account.microsoft.com/security
Sign in to your Microsoft account
Tap Add a new way to sign in
Select Face, fingerprint, PIN, or security key
Choose iPhone, iPad, or Android device
Android prompts to create a passkey
Authenticate with fingerprint, face unlock, or screen lock
Passkey saves to Google Password Manager

Note: Requires Android 9 or later and Google Play Services.

Set Up Hardware Security Key

For maximum security, use a FIDO2 hardware key:

Go to account.microsoft.com/security
Click Add a new way to sign in
Select Use a security key
Choose USB device or NFC device
Insert your security key when prompted
Touch the key to confirm (if required)
Set a PIN for the key if prompted
Name your security key

Recommended security keys:

YubiKey 5 Series
Feitian ePass
Google Titan Key

Once set up, signing in is simple:

Go to any Microsoft sign-in page
Enter your email address
Click Sign-in options or Other ways to sign in
Select Face, fingerprint, PIN, or security key
Complete biometric authentication on your device
You're signed in—no password needed

Manage Your Passkeys

View Registered Passkeys

Go to account.microsoft.com/security
Look under Ways to sign in
Find your passkeys listed by device name

Remove a Passkey

Click on the passkey you want to remove
Select Remove
Confirm the removal

When to remove passkeys:

Lost or stolen device
Selling or giving away a device
Replacing an old device

Method	Phishing-Resistant	Device Required	Recovery
Passkey	Yes	Yes	Backup methods needed
Password	No	No	Email/phone reset
Authenticator app	Partial	Yes	Backup codes
SMS code	No	Yes (phone)	Phone number change

Troubleshooting

Passkey Option Not Available

Ensure your browser supports WebAuthn
Update your browser to the latest version
For work accounts, check with IT if passkeys are enabled

Biometric Authentication Fails

Clean fingerprint sensor or camera
Ensure adequate lighting for face recognition
Use device PIN as fallback
Re-register your biometrics in device settings

You can use a phone's passkey to sign in on a computer:

Select Sign in with a passkey from another device
Scan the QR code with your phone
Authenticate on your phone
Sign-in completes on the computer

Best Practices

Register multiple passkeys: Add passkeys on all your devices
Keep backup methods: Don't remove all other sign-in options
Name passkeys clearly: Use descriptive names like "iPhone 15" or "Work Laptop"
Remove unused passkeys: Delete passkeys from old or lost devices

How to Set Up Microsoft Passkey for Passwordless Sign-In

What You Need

Set Up Passkey on Windows

Step 1: Enable Windows Hello

Step 2: Add Passkey to Microsoft Account

Set Up Passkey on iPhone/iPad

Set Up Passkey on Android

Set Up Hardware Security Key

Manage Your Passkeys

View Registered Passkeys

Remove a Passkey

Troubleshooting

Passkey Option Not Available

Biometric Authentication Fails

Best Practices

Frequently Asked Questions

Need Professional Help?

How to Cancel Microsoft 365 Subscription (Personal, Family & Business)

How to Check Microsoft Surface Warranty Status

How to Delete a Microsoft Account Permanently (Complete Guide)

How to Set Up Microsoft Passkey for Passwordless Sign-In

What You Need

Set Up Passkey on Windows

Step 1: Enable Windows Hello

Step 2: Add Passkey to Microsoft Account

Set Up Passkey on iPhone/iPad

Set Up Passkey on Android

Set Up Hardware Security Key

Sign In with Your Passkey

Manage Your Passkeys

View Registered Passkeys

Remove a Passkey

Passkeys vs Other Sign-In Methods

Troubleshooting

Passkey Option Not Available

Biometric Authentication Fails

Cross-Device Sign-In

Best Practices

Related Articles

Frequently Asked Questions

Need Professional Help?

Related Articles

How to Cancel Microsoft 365 Subscription (Personal, Family & Business)

How to Check Microsoft Surface Warranty Status

How to Delete a Microsoft Account Permanently (Complete Guide)