We value your feedback. Use this form to tell us about your experience with Passkeys.
Passkeys replace MFA tokens as the primary way to authenticate, making it essential to manage them properly. No, you are not going to lose your tokens for the foreseeable future even if you have moved on to using Passkeys.
However, to streamline your login experience and enhance security, you should plan to use your newly minted passkey as your primary authentication method.
Since passkeys are stored securely on your device and may sync across devices via cloud services, periodic reviews of your stored passkeys are recommended.
Follow the step-by-step instructions below to manage passkeys efficiently.
Access the Passkey management console here.
Managing you Passkey
If you don't see the Passkey authentication screens when attempting a login to a service or you receive an error, follow these steps to make sure you’re on the Passkey identity provider:
Open your primary web browser.
- Sign out of the current logged-in session of your Berkeley Lab Identity account.
- Close all windows
Copy the following selector link:
- Reopen your primary web browser window
Paste the link into your browser’s address bar and press Enter.
Use the following link to register and manage the Passkey/ Security Key: https://login.lbl.gov/idp/profile/admin/webauthn-registration
- Enter your Berkeley Lab Identity account user name and click Proceed
- Enter your password and click login
- Continue with the touch ID for Passkey stored in the Apple password/iCloud
- Login was successful!
- You can now add a security key or delete and complete by clicking finish.




