Passwords are still lingering like that one office printer nobody likes…unreliable, outdated, and just getting in the way. They are difficult to remember, easy to forget, and tend to be reused in multiple places where your password shouldn’t be.

That’s precisely where passkeys enter the picture and simplify everything…except for a catch.

How Passkeys Work

Passkeys are meant for removing the need for passwords altogether, using your device that is equipped with biometric or PIN authentication. So instead of punching in your password, your device simply says, “Oh, I know you, come right in.”

When you establish the passkey for the supported site or app, your device establishes what is known as a key pair. The private part of the key is kept safely tucked away on the device. This public part of the key is what the service relies on when it comes to confirming that it is really you. As your private key never leaves the device, even if the hacker does get into the site, your log-in information is of no use to the hacker.

What’s the Catch?

The problem has been that passkeys are tied to specific devices. Use it for your laptop? No way to use it for your phone as well. Needing to change your laptop? Starting fresh. This is not scalable for either being part of a team that has several devices or simply wanting to prevent myself from being locked out.

The Solution

But Microsoft is finally alleviating this problem, at least a little bit. With its newest Microsoft Edge browser update (version 142 or later), it is possible to synchronize passkeys on Windows devices with the help of its password manager function in Microsoft account. This will enable you to fetch your passkeys from any Windows computer that you are logged into.

It’s not an ideal arrangement, but it’s a start. Rather than having to contact your IT support department to help reset passwords or unlock an account, your team can use biometric or device PIN sign-ins. This is even easier when using Windows Hello.

Another Catch?

However, there is a catch here. Currently, this syncing capability is applicable only to a personal Microsoft account. It is not applicable to work or school accounts that use Microsoft Entra ID (previously Azure AD). Also, in this initial stage, this capability cannot be applied to mobile devices or macOS.

Since your team works with the Windows ecosystem, having the ability to use Microsoft accounts beyond the Entra ID might cut down on some of the friction points in your day. Not to mention helping reduce the problems that are sucking up your time related to password issues.

However, if your operations are based on managed identities (which you most likely are) or if they are a combination of platforms, including Macs or mobile devices, then this is more of a sneak peek into the future rather than the solution. Rather, it is an indicator of where the future lies, but wait for broader support before making any drastic changes.

As another note, if you are relying on a password manager to sync your credentials then I never recommend using the browser. Always opt for a dedicated password manager.

Bottom line: passkeys are creeping towards utility. They’re not yet ready for general business use, but the trend is obvious. And if you’re someone who is fed up with the struggles of password reset/lockout processes, it is about time for you to keep a close eye on this.