- 04 Sep 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
Passkeys
- Updated on 04 Sep 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
What are passkeys?
Passkeys are a secure method of passwordless authentication that replace traditional passwords and 2FA. They allow you to log in using biometrics, such as Face ID or Touch ID, or device PINs instead of remembering and typing complex passwords.
This method enhances both your security and user experience by eliminating the need for passwords, which are often vulnerable to attacks.
How do passkeys work?
Passkeys use public-key cryptography, where two keys are generated - a public key stored on the Visma server and a private key kept securely on your device. When you want to log in with a passkey, the Visma server sends a challenge that can only be answered with the correct private key. Since the private key never leaves your device, it can't be intercepted or stolen.
How do I register a passkey?
There are several ways:
Option 1: Register passkey during account activation
New accounts created receives an activation email from Visma. When the link in this email is clicked you can choose to set a password for your account or instead sign in with a passkey.
The “Sign in with passkey” button shows on any device that is capable of doing such a sign in. If your device is not capable the option will not show.
Once “Sign in with passkey” is chosen a screen like below will pop-up where you sign in with FaceID, TouchID or what your device is capable of.
This first sign in registers your passkey with Visma.
Option 2: Register passkey after signing in with a password
On passkey capable devices you will also be asked, on regular intervals, when you sign in with a password (with or without 2FA) if you are “Tired of passwords”?
There you can choose to “Turn on” this feature to sign in with a passkey.
Option 3: Register passkey from your Account Settings
At any time you can open your Account Settings and add or remove passkeys.
How do I sign in with a passkey?
Once you have setup one or more passkeys on your device you can sign in by clicking the “Sign in with security key or biometrics” link on the sign-in screen.
If you have chosen “Save my email address for next time” and have a passkey on your device you will see this screen with the “Sign in with passkey” option.
Once you have signed in with a passkey on your device, your sign in screen changes into passkey mode.
How do I remove a passkey?
At any time you can open your Account Settings and remove passkeys.
Can I remove my password?
No, if you have initially set a password for your account you cannot currently remove it.
This will be possible in a future release. If you have added multiple passkeys to not lock yourself out of the system, you will be able to do so.