We value your feedback.  Use this form to tell us about your experience with Passkeys.

When logging in, passkeys replace MFA tokens, eliminating the need for one-time codes. You will still enter your password as usual, but instead of entering a 6 digit one-time code, you’ll verify your identity using biometrics, a device PIN, or a security key as your second factor.

Passkeys provide strong phishing-resistant authentication, ensuring that credentials can only be used on legitimate websites and services.

Follow the instructions below to authenticate using passkeys.

If you do not have access to your passkey(s), then you can temporarily Fallback to One-Time Password (OTP)

Authenticating with your Passkey


    1. Browse to a site like lets.lbl.gov, gmail.lbl.gov, etc
    2. Enter your Berkeley Lab Identity account user name and password then click login



    3. Continue with the touch ID for Passkey stored in the Apple password/iCloud



    4. Login was successful!

    1. Browse to a site like lets.lbl.gov, gmail.lbl.gov, etc
    2. Enter your Berkeley Lab Identity account user name and password then click login


    3. Tap your Hardware security key / Yubikey



    4. If you have a Password Manager browser extension installed (such as 1Password) and want (or need) to authenticate using your hardware security key, you will first have to click the security key symbol in your Password Manager pop-up that says something like"Use a security key or another passkey" and then you will be prompted to tap your Security key



    1. Browse to a site like lets.lbl.gov, gmail.lbl.gov, etc
    2. Enter your Berkeley Lab Identity account user name and password then click login

    3. Select your chrome profile



    4. Verify your identity by TouchID or Password

    Make sure you have the 1Password browser extension installed

    1. Browse to a site like lets.lbl.gov, gmail.lbl.gov, etc
    2. Enter your Berkeley Lab Identity account user name and password then click login



    3. Click "Sign in" next 
      ( sure you have the 1Password browser extension installed)



    1. Browse to a site like lets.lbl.gov, gmail.lbl.gov, etc
    2. Enter your Berkeley Lab Identity account user name and password then click login



    3. Choose whether to sign in with an iPhone, iPad or Android device or a hardware Security key and click Next



    4. If you choose iPhone, iPad or Android device, scan the QR code with your phone's camera (Bluetooth must be enabled on both your computer and mobile device)



      If you choose Security key, Tap your Hardware security key / Yubikey

    You must be signed into your Samsung account on your phone in order to use Samsung Pass.

    Instructions for setting up and using Samsung Pass are documented at:

    https://www.samsung.com/us/support/answer/ANS10002529/

    You can also sign into a Google account on your Samsung phone and then use Google's Password Manager


    • No labels