Passwords have always been a necessary evil, giving you the choice of using one that’s too simple (so it’s easy to remember) or one that’s obscure enough to be secure but complicated enough to require a password manager to have.
Until now, the best way to keep your accounts secure has been a two-factor authentication (2FA) password. But now Google offers another choice: use a password – a secure credential linked to the PIN or biometric authentication your device already uses. The passcode only exists on your device, not in the cloud, making it even more secure.
Wanna try? Here’s how.
Currently, you can create an access key at all compatible hardware, including laptops/desktops running Windows 10 or macOS Ventura (or later) running Chrome 109, Safari 16, or Edge 109 or later. If you set a password on a mobile phone or tablet, it must have iOS 16 or Android 9 (or later). You can also use it with any hardware security key that supports the FIDO2 protocol.
You must also have a screen lock enabled, and if you want to use your phone to sign in to another device, such as a laptop, Bluetooth must also be enabled.
Finally, if you have a Google Workspace account through a school or employer, you won’t be able to set a passcode for that account. (However, you can use it for any personal Google account.)
You can remove a device from your access key list, if the access key was created by you.
If the passkey was created automatically by Google, you can’t delete it. Instead, you need to sign that device out of the account.
Yes. If you want, you can go back to using passwords and 2FA as before. (Note: The access keys are still part of the account; they’re just not used.)