In this blog post, I explore the steps to enable:
- Passkeys in the Microsoft Authenticator app using an iPhone
- Setting up a passkey via a physical Yubikey 5 (usb-c)
Note: This post is targeted at users who want to set up passkeys in the Microsoft Authenticator app or register a physical key. Your administrators must have enabled the capability to use passkeys before you can complete the steps below. To use passkeys via the Authenticator app, you need Android 14 or later, or iOS 17 or later (at the time of writing this post). Additionally, make sure that your Microsoft Authenticator app is updated to the latest version.
If you wish to learn more about how passkeys work, check out my post at: Part 1 – What is a FIDO2 key and How to Set One Up for Emergency Access in Entra ID | Cloud Build
Configure Passkeys in the Microsoft Authenticator App on an iPhone
- Access https://mysignins.microsoft.com and login
- Click security info from the left pane
- Click + Add sign-in method

4. Click the option, Passkey in Microsoft Authenticator

5. You may be prompted to go through MFA before you are able to add a new sign-in method. Please continue with this. When done, continue to step 6.
6. Read the pre-reqs and click next

7. Don’t click Next just yet. You will need to follow the instructions mentioned on your screen first.

- Open the Microsoft Authenticator app on your phone. Tap on the account/email address you will be setting this passkey for. Keep the app open while you proceed with the setup.
- Click Create a passkey.
If this option does not appear, ensure that you have met the pre-reqs I mentioned at the beginning of this post.

8. You will be prompted to sign-in. Click the Sign-in button and login
9. If it is the first time you’re setting up a passkey via the Microsoft Authenticator app, you’ll be prompted to enable a couple of settings on your phone before you are allowed to continue.

10. We’re done with the configuration on the phone. Continue to the step 11 below.

11. Return to your laptop/desktop and click next to complete the process.
That’s it. If you’re interested in configuring a physical key, such as a YubiKey, the next section goes through the process.
Configure a passkey via a physical Yubikey 5 (usb-c)

- Access https://mysignins.microsoft.com and login
- Click security info from the left pane
- Click + Add sign-in method

3. Click the option Security key

4. You may be prompted to go through MFA before you are able to add a new sign-in method. Please continue with this. When done, continue to step 5.
5. Select the type of security key. I select USB device

6. Have your physical key ready, after clicking next, you’ll be prompted to plug it in.

7. Click next and then select Security key (If this option does not appear, click the option other ways to sign-in and then click Security key). Click next.

8. Read and click OK

9. Read and click ok

10. You will be prompted to insert you physical key

11. You will be prompted to create a new PIN

12. Your physical YubiKey will flash and you will be prompted to place you finger on it

13. Passkey saved, click ok

14. Finally, you will be prompted to give your Physical key a name so you can easily identify it.

15. Done

I hope you found this post useful. Catch you at the one