How to Set Up Passkeys on iPhone, Android, Windows, and Mac
Passkeys replace passwords with phishing-resistant logins unlocked by your face or fingerprint. Here is a beginner walkthrough for every platform, plus the recovery step people most often skip.
Table of contents
Passkeys are the most significant upgrade to logging in since the password itself, and the best part is that setting one up takes about thirty seconds per account. A passkey replaces the password with a cryptographic key that lives on your device and is unlocked with your face, fingerprint, or PIN. Because there is no secret to type, there is nothing to steal, copy, or phish. This guide walks you through enabling passkeys on iPhone, Android, Windows, and Mac, and explains the recovery steps that beginners most often skip.
What you are actually setting up
According to the FIDO Alliance, the body behind the standard, "a passkey is a FIDO authentication credential based on FIDO standards, that allows a user to sign in to apps and websites with the same process that they use to unlock their device." Crucially, "there are no passwords to steal and there is no sign-in data that can be used to perpetuate attacks." That is why passkeys are described as phishing-resistant: even a perfect fake login page cannot capture something you never type.
On most platforms your passkeys sync securely through your device's cloud account (iCloud Keychain, Google Password Manager, or a third-party password manager), so a passkey created on your phone can work on your laptop too.
Before you start: the recovery rule
This is the step people regret skipping. A passkey is tied to the account that syncs your devices. Before you delete any old passwords, make sure you can still get back in if you lose your phone.
- Confirm you know the password and recovery options for your platform account (Apple, Google, or Microsoft).
- Keep at least one backup sign-in method on important accounts, such as a recovery code or a second passkey on another device.
- Do not remove the password from an account until you have successfully signed in with the passkey at least once.
Step-by-step by platform
The exact wording varies by app, but the flow is almost identical everywhere: find the security settings, choose "create a passkey," and approve with your device unlock.
| Platform | Where to set it up |
|---|---|
| iPhone / iPad | In the account's website or app, choose "Sign in with passkey" or add one in account security settings; approve with Face ID or Touch ID. Passkeys sync via iCloud Keychain. |
| Android | Add a passkey in the account's security settings; approve with fingerprint or screen lock. Passkeys sync via Google Password Manager. |
| Windows | Use Windows Hello (face, fingerprint, or PIN) when a site offers "create a passkey." Manage saved passkeys in Settings under Accounts/Passkeys. |
| Mac | Same as iPhone: choose to create a passkey on the site, approve with Touch ID. Syncs through iCloud Keychain across your Apple devices. |
Start with your most valuable accounts: email first (because it can reset everything else), then banking, then social and shopping.
What changes when you move to a new device
Because passkeys sync through your platform account, signing in to a new phone or laptop with that same account usually brings your passkeys with it. If you switch ecosystems, for example from iPhone to Android, your passkeys may not transfer automatically. That is why keeping a backup sign-in method matters: it lets you re-establish access and create fresh passkeys on the new device.
Bottom line
Setting up a passkey is quick and makes your most important accounts dramatically harder to phish, because there is no password to capture. The one rule beginners must not break is recovery: keep a working backup sign-in method and confirm the passkey works before removing the old password. Do email first, then expand from there.
Sources and further reading
Sources
- FIDO Alliance: Passkeys — passwordless authentication fidoalliance.org
