A passkey is a more secure and simple alternative to logging in with a username, password and 2FA.
How Do Passkeys Work?
Passkeys are “digital credentials” that are stored on your computer, mobile phone, a dedicated authenticator app or hardware device. Once set up, passkeys let you log in to Dext without entering your email and password. You authenticate yourself using a biometric (e.g. a fingerprint), your device’s PIN, or a physical authenticator device (e.g. a YubiKey).
Once you’ve registered a passkey into a site, logging in with it is as simple as clicking the “Login with a passkey” button and then identifying yourself with a biometric supported by your device – e.g. Windows Hello, Apple’s FaceID or TouchID or Android’s biometric identification.
Prerequisites
Compatible Operating Systems:
- macOS (13+)
- Microsoft Windows 11 (limited support, better support Build 23486 and later)
- Apple iOS iPadOS (16+)
- Android (9+)
- Ubuntu (limited support with Chrome or Edge browsers)
Compatible Browsers:
- Apple Safari (13 and later)
- Google Chrome Browser (79 and later)
- Microsoft Edge (79 and later)
- Mozilla Firefox (60 and later)
Password Manager Apps:
- 1Password
- Bitwarden
- NordPass
- Keeper
- RoboForm
- Dashlane
Setting Up a Passkey in Your Dext Account
To set up a Passkey:
- Go to User Settings in the top right of the page.
- Then go to the Security section.
- Next to ‘Passkeys’ under ‘Passwords’ click the Add button register a new Passkey for your account.
- Follow the prompts to enter your password to verify your identity. You will also need to name your Passkey. (You can change the name anytime later on).
Note: Our recommendation is to use a name like “Keychain”, “Chrome”, “1Password”, or “YubiKey” that hints at where the passkey will be stored. This way if you need to find where your passkey is, you will know where to look for it.
- Once you enter your passkey name, you then select where you’d like to store your Passkey. Depending on your operating system, browser of choice, devices and preferences you’ll have a few options available (click your choice to see the steps to follow):
Storing Your Passcode with Google Chrome or Microsoft Edge
Once you select Google Chrome or Microsoft Edge:
Important: Your passkey will only be available in the app you select. E.g. if you select Microsoft Edge, you cannot log in with it in Chrome for example.
- The following window will pop up, click Continue.
- Next, confirm your identity. You can either use your fingerprint or your device’s password. Remember to enter the password of your device, not your Dext password.
- You can now log in with passkey in Chrome or Microsoft edge. This is going to be the default option on log in. If you want to authenticate with another option you need to select “Select other option”.
Storing Your Passcode with Safari (Keychain)
Safari uses Keychain to store your passkeys.
Important: Before you start you need to make sure you’re signed in with your Apple ID on your Mac. The Keychain app must also be in sync with your iCloud.
Once you’ve selected Safari you will see the following window:
Use Touch ID to continue. If you want to use another passkey, click Cancel.
Storing Your Passcode with a Mobile Device (iOS)
To store your passkey from your web browser to your iOS mobile device, your computer’s Bluetooth needs to be turned on.
Once the Bluetooth is turned on you can proceed with the registration:
- If your device is already linked with your computer you will see it in the available options:
Otherwise, you need to generate a QR code and scan it with your device:
- Once you’ve selected iPad, iPhone or Android device you will see the following window. Select where you’d like to store the passkey, then use Face ID or Touch ID to continue.
If you saved your passkey in your Keychain and it is using your iCloud account, you will be able to log with it from your computer without the need to use your mobile device if you have the Keychain running on it. If not, you will see a prompt on your mobile device where you need to authenticate using a biometric on PIN.
Storing Your Passcode with a Mobile Device (Android)
To store your passkey from your web browser to your Android mobile device, your computer’s Bluetooth needs to be turned on.
Once the Bluetooth is turned on you can proceed with the registration:
- If your device is already linked with your computer you will see it in the available options:
Otherwise, you need to generate a QR code and scan it with your device:
- Once you’ve selected the Android device you wish to store you passkey on, will see the following window. Click Continue to create your passkey.
If you used your Google Password Manager on your Android, you will need the mobile device to access your passkey. You will be prompted to authenticate yourself using a biometric or PIN either way.
Troubleshooting
- “I cannot set up a passkey on my Windows machine”
Make sure Windows Hello is installed first. If you can’t install it or it is installed and the problem persists, try using another method.
- “Cannot establish a connection between my computer and mobile device”
The Bluetooth must be turned ON because this is the protocol that is used to transfer the passkey from your computer to your mobile device.
- “Why I have to scan a QR code every time”
If you registered a passkey from a Safari browser in the Password Manager of your Android device, there is no other way to use your passkey. The Safary browser connects only to Keychain and to automatically detect your passkey, it needs to be stored there. If you use a Chrome or Edge browser you need to make sure that the Google Account that you’re logged in is the same account that you used to store your passkey on your phone. Both accounts (in your browser and on your mobile phone) must also be synchronised.