MFA Passkeys

1. What is a Passkey?

A passkey is a modern, phishing-resistant way to sign in without using a password!

PasswordlessSecurity.png

Passkeys are part of Microsoft's move to a passwordless future where accounts are protected by your device and biometrics instead of passwords that can be stolen, guessed, or phished


2. Syncable Passkeys

A passkey lets you sign in without typing your password each time. It uses your device's built-in security, such as Face ID, fingerprint, screen lock, or device PIN. 

We recommend saving your passkey to: 
 - Apple Passwords (if you use iPhone)
 - Google Password Manager (if you use Android)


3. Before you Begin

Make sure you have:  Do not create a passkey on: 

Your Piedmont email address

A public computer

Your current password

A shared family computer

You current MFA method

A classroom or lab computer

A personal phone or computer that only you use

A friend's phone

4. Enable Passkey Syncing (iOS/MacOS)

  1. Confirm your iCloud keychain is enabled
    • Open Settings
    • Select your Name / Apple ID at the top
    • Tap iCloud
    • Tap Passwords and Keychain
    • Confirm that the setting Sync this iPhone or Sync this iPad is enabled

  2. On Mac:
    • Open System Settings
    • Click your Apple Account
    • Click iCloud
    • Ensure Passwords is set to Sync

5. Create a Passkey

  1. Open a web browser and visit https://myaccount.microsoft.com 
  2. Expand My Account 
  3. Select Security Info 
  4. You will be prompted to login using MFA. 
  5. Once logged in, select Add sign-in method 
  6. Select Passkey 
  7. Select Next and follow through the on-screen prompts


6. Sign in with Passkey

  1. When you login using your Piedmont credentials, you will receive a new popup window in place of Microsoft Authenticator
    ChoosePasskey.png
  2.  Select iPhone, iPad, or Android device.
  3. Use your mobile device to scan the QR Code on your computer, select Sign in with Passkey

    PasskeyQRCode.png

  4. On your mobile device, a message will appear "Sign in to login.microsoft.com" on the other device with your passkey for "@piedmont.edu" saved in Passwords?
    • Choose Use Passkey
  5. Your mobile device will prompt for Face ID or biometrics.

7. Sign in using Microsoft Authentiactor

  1. In some cases you may need to use the original MFA through the Authenticator app, to do so, select the 'X' or 'Cancel' button and select Sign in Another way
    BypassPasskey.pngUseAuthenticator.png
  2. Select Approve a request on my Microsoft Authenticator app to complete original MFA steps. 

    OriginalMFA.png
  3. Follow the on-screen instructions to approve the Authenticator request. 

8. What happens when you get a new phone? 

If your passkey does not appear, you will need to Contact IT for assistance. 


9. Security Notes


10. Next Steps

Review what you can do to help keep Piedmont secure here!


Need Help?

If you encounter an error or need assistance with this guide, please contact the IT Department and include a screenshot with a brief description of the issue.

Contact the IT Department Here


Revision #11
Created 2026-02-10 16:57:54 UTC by Jefferson Davis
Updated 2026-06-30 13:53:30 UTC by Jefferson Davis