Passkey authentication

Purpose

This guide helps Members understand:

  • What passkey authentication is

  • When passkey authentication is required

  • How to complete passkey verification successfully

Prerequisites

Before using passkey authentication:

  • You have successfully entered your email and password

  • Passkey authentication is enabled by your organization

  • You are using a supported device and browser

  • A passkey has already been registered for your account

I already understand. How do I proceed step by step?

1. When Passkey Authentication Is Triggered

Passkey authentication may be required when:

  • The organization enforces passkey-based authentication

  • Passkey is configured as the default MFA method

  • Risk-based access control requires stronger verification

  • You are signing in from a new or untrusted environment

2. Passkey Authentication Flow

Step 1: Passkey Prompt Is Displayed

After entering your email and password, the system prompts you to verify using a passkey.

Step 2: Continue with Passkey

Click Continue to start passkey verification.

Step 3: Verify Your Identity

Verify your identity using one of the following methods, depending on your device:

  • Fingerprint

  • Face recognition

  • Device PIN

  • Hardware security key

Follow the on-screen instructions provided by your device or browser.

3. Authentication Result

After successful passkey verification:

  • Sign-in is completed

  • You are redirected to your dashboard or workspace

  • Your session is established securely

Failure and Retry

If passkey authentication fails:

  • You may retry using the same device

  • You may be prompted to use an alternative verification method (if allowed)

  • Repeated failures may temporarily block authentication

Security Benefits

Passkey authentication provides:

  • Phishing-resistant authentication

  • No shared secrets (no passwords or OTPs)

  • Strong device-bound security

  • Protection against credential stuffing and replay attacks

Important Notes

  • Passkeys are device- and browser-specific

  • Passkey availability depends on your device and browser

  • Losing access to your device may require administrator assistance

  • Passkeys do not replace organization security policies

Summary

Item

Member

Passkey Configuration

❌ Not allowed

Passkey Usage

✅ Supported (if enabled)

Authentication Type

Phishing-resistant

Device Requirement

Supported browser & device

Fallback Method

Policy-dependent

PreviousMFA verificationNextOten Workspace

Last updated