Passkeys replace passwords with cryptographic keys stored in your device's secure enclave (Face ID, Touch ID, Windows Hello, Android biometrics). Sign in with one tap, no email magic-link wait, no password to forget. They're also phishing-resistant by design — no fake site can trick a passkey into authenticating for the wrong domain.
Setting up a passkey on iOS
- Open the iOS app and go to Settings → Passkeys.
- Tap Add a passkey.
- Authenticate with Face ID or Touch ID. The passkey is generated and stored in your iPhone's keychain.
- If you have iCloud Keychain enabled, the passkey syncs to your other Apple devices automatically.
Setting up a passkey on the web
- From the dashboard, go to Settings → Passkeys.
- Click Add a passkey.
- Your browser prompts you to choose a credential storage option (system keychain, password manager, hardware key like YubiKey). Pick what you want.
- Authenticate. The passkey is created and registered to your account.
Using a passkey to sign in
On the sign-in page, click Sign in with passkey. Your device prompts you for biometric verification (or to insert a hardware key). On success, you're signed in instantly — no email step.
Managing passkeys
Each passkey shows up in Settings → Passkeys with the name of the device it was created on and the date you registered it. To revoke one (e.g. you sold the device or lost the security key), swipe-to-delete on iOS or click the trash icon on web.
If you have multiple devices
You can register a passkey from each device. Apple devices on the same iCloud account share passkeys via iCloud Keychain — register once, use anywhere. For cross-platform (iPhone + Windows PC, or Android + Mac), register a separate passkey from each.
What if I lose access to all my passkeys?
You can always sign in with a magic link to your email or with Google/Apple OAuth if you previously linked them. Passkeys are an additional sign-in method, not a replacement for the others — losing your phone doesn't lock you out of your account.