Creating your Passkeys
Before You Begin
Before setting up a passkey, ensure the following:
• A compatible mobile device, security key or password manager: Make sure you have a compatible mobile device, security key or password manager. Passkeys work on modern mobile devices, hardware security keys (such as Yubikeys) and up-to-date operating systems (Windows, macOS, iOS, Android) and web browsers (Chrome, Safari, Edge, Firefox) using third-party password managers such as 1Password and LastPass.
• An authentication method: Make sure you have set up your biometrics. Passkeys rely on built-in security features such as biometrics (Face ID, Touch ID, Windows Hello), a device PIN, or a hardware security key.
• Backup options: If your device supports syncing, ensure that cloud backup is enabled (e.g., iCloud Keychain or Google Password Manager) to avoid losing access.
• Access to your Lab account: Make sure you are able to authenticate to your Lab account. You will need to authenticate with your Lab credentials before setting up a passkey.
Once these prerequisites are met, follow the step-by-step instructions here to create a passkey.
Managing your Passkeys
Passkeys replace MFA tokens as the primary way to authenticate, making it essential to manage them properly.
You will NOT lose your one-time password tokens for the foreseeable future, even if you have moved on to using Passkeys.
However, to streamline your login experience and enhance security, you should plan to use your newly minted passkey as your primary authentication method.
Since passkeys are stored securely on your device and may sync across devices via cloud services, periodic reviews of your stored passkeys are recommended.
Follow these step-by-step instructions to manage passkeys efficiently here.
Access the Passkey management console here.
Authenticating with your Passkey
When logging in, passkeys replace MFA tokens, eliminating the need for one-time codes. You will still enter your password as usual, but instead of using a separate authentication app or hardware token, you’ll verify your identity using biometrics, a device PIN, or a security key.
Passkeys provide strong phishing-resistant authentication, ensuring that credentials can only be used on legitimate websites and services.
Follow the provided instructions to authenticate using passkeys here.
Resources
- We value your feedback. Use this form to tell us about your experience with Passkeys.
- Frequently Asked Questions & Troubleshooting
- Passkeys in the news.
- Elements: Passkeys Are Coming to Berkeley Lab March 20, 2025
- IT News: Passkeys Are Coming to Berkeley Lab March 14, 2025