How to Enable Passkeys on iOS

On iOS, you can set up Apple passkeys to replace passwords for logging in to supported applications and websites. This guide provides detailed steps on how to enable passkeys on iOS and how to log in with them on your Apple devices.

To enable passkeys on iOS, first ensure your device meets the requirements.

Passkeys provide an easy and secure way to log in to supported sites and applications without passwords by relying on Face ID or Touch ID to identify you. Your iOS device stores the passkey in the iCloud Keychain, therefore you must be running iOS 16, iPadOS 16, macOS Ventura, tvOS 16 or later, and need an enabled iCloud Keychain.

Is my Apple device passkey-ready?

To save a passkey on your iOS, you need an activated iCloud Keychain. If you don't have the iCloud Keychain turned on when you try to create a passkey, you will be prompted to do so (“To save a passkey, you need to enable iCloud Keychain. You can enable iCloud Keychain in Apple ID > iCloud > Passwords and Keychain in the Settings app”). Passkeys also require that you have two-factor authentication (2FA) enabled for your Apple ID.

• Enhanced Security: By enabling passkeys on iOS, you use public key cryptography, which means the private key never leaves the Apple device, reducing the risk of phishing and credential theft. This cryptographic method is significantly more secure than traditional passwords, which can be stolen or leaked.

• Simpler User Experience: Passkeys eliminate the need to remember and manage multiple passwords. Authentication with a passkey on iOS typically involves just a biometric check (like Face ID or Touch ID) or a device PIN, making the process much faster and more user-friendly.

• Cross-Device Compatibility: Apple passkeys on iOS are always stored in your iCloud Keychain. Thus, passkeys created on one iOS device can be used across other Apple devices signed into the same iCloud account, and they can also be accessed on non-Apple devices via QR codes or other methods, making them versatile across different platforms.

  

  Subscribe to our Passkeys Substack for the latest news, insights and strategies.

  Subscribe

You can create and save passkeys for apps and websites that support passkeys. The instructions for creating and saving a passkey can vary depending on the app, website, or browser (see e.g. our PayPal, GitHub, or KAYAK analysis for reference) but they typically consist of steps similar to the following:

1. On your iOS device, open the login page of a website or app that supports passkeys. If you set up a new account, tap the button to set up a new account / create a passkey. When you turn on passkeys on your iOS device, your login process becomes much more secure and convenient. Follow the onscreen instructions. If you already have an existing account, log in to your account via your username / email and password. Then, go to the account settings or management page.
2. When you see the option to save a passkey for the account, tap “Continue”.

3. Your passkey is saved.

The passkeys you created are stored on your iOS device at Settings > Passwords. You can have a passkey and password for the same app or website and find them both under the same account.

You can also back up passkeys to a hardware security key. Under “More options”, tap “Back up to another device” or a similar option (if available) and follow the on-screen instructions to back up a passkey.

Passkeys are available on all your devices where you are logged in with the same Apple ID, as they are synced via the iCloud Keychain.

The instructions for logging in with a passkey can vary depending on the app, website, or browser, but they typically consist of steps similar to the ones below:

1. On your iOS device, go to the website or app and tap the username (can any unique identifier, email address or phone number) input field on the login screen.
2. Login
   • Login with Conditional UI: Tap the suggested username that appears at the bottom of the screen or on top of the keyboard.
   • Regular login: If the username doesn't appear automatically in an autofill menu, or you want to use a different one, enter it.
3. Use Face ID or Touch ID to complete the login. If you didn’t set up Face ID or Touch ID on your iOS device, enter your device passcode (the code you use to unlock your device).
4. The passkey you saved completes the login automatically.

If you want to log in on your current iOS device using a passkey that is stored on a different device not associated with your Apple ID, you may be able to select “Other Options” (or similar) instead of “Continue”. Then, follow the onscreen instructions, where you can either use another “iPhone, iPad or Android device” (read more about Cross-Device authentication with QR codes and Bluetooth in this blog post) or a “Security key” (e.g. YubiKey).

Using a passkey saved on your iPhone to log in on another device is simple and secure. If you are using a device not associated with your Apple ID, you can sign in to apps or websites on that device using the passkeys you created for them on another of your devices. The instructions for using a passkey on another device can vary depending on the app, website, or browser, but they typically consist of steps similar to the ones below:

1. On the other device, go to the website or app and enter your username in the username input element on the login screen.

2. Click “Login” and you should see a Face ID menu from iOS.

3. Select "Other options," "Passkey from nearby device," or similar, then follow the onscreen instructions to display a QR code on the screen.

4. Use the camera on your other iOS device (e.g. iPhone or iPad) that has a passkey stored to scan the QR code.

5. On the other phone where you scanned the QR code, select the passkey you want to use. By clicking on it and confirming via Face ID or Touch ID or passcode, the login process is also completed.

Integrate passkeys with third-party password managers on iOS to enhance your cross-platform usability. To use passkeys on devices from other platforms, you can save your passkeys in any third-party password manager, such as Dashlane or 1Password.

To select a password manager for saving passkeys on your Apple device, go to Settings > Passwords, passkeys, and autofill and select the password manager / passkey providers you want to use.

You can always use our iPhone’s passcode instead of biometric authentication (e.g. Face ID, Touch ID).

Yes, passkeys can be used across different platforms, including Android. Here’s how it works:

1. Platform Independence: Passkeys are not restricted to devices, browsers, or operating systems from a single company. While they may be anchored to a specific technology suite by default (such as Windows Hello for Windows, Google Password Manager for Android, and iCloud Keychain for iOS and macOS), they are designed with cross-platform and cross-device compatibility in mind.
2. Sharing Across Platforms: Passkeys can be used between different platforms and devices using QR codes and Bluetooth. This means you can seamlessly use a passkey generated on an iOS device on an Android device and vice versa.
3. Backup and Synchronization: Passkeys are securely backed up in services like iCloud Keychain and Google Password Manager. For instance, if you attempt to log in to the same account on your Mac, iPhone, iPad, or Apple TV, you can simply use Face ID or your fingerprint to verify your identity. This ensures that passkeys are synced across all Apple devices connected to the same iCloud account.
4. Third-Party Managers: Using third-party password managers such as 1Password or Dashlane allows you to use the same passkey on different platforms. These managers facilitate the synchronization and management of passkeys across various devices and operating systems, enhancing cross-platform usability.

In summary, while passkeys are initially tied to a specific platform's technology suite, they are inherently designed to be used across different platforms, ensuring a secure and seamless login experience regardless of the device or operating system you are using.

Yes, passkeys on iOS can be shared with other people via AirDrop.

In conclusion, activating passkeys on iOS is straightforward and offers enhanced security and ease of use. Passkey authentication is integrated into iOS 16 and later versions, enabling users to conveniently use passkeys for signing in to applications and websites. To use passkeys on iOS, you need to activate your iCloud Keychain, which stores them. Consequently, your passkeys are functional across different Apple devices, allowing for seamless login on any other Apple device as well.