Apple's entrance into the world of passkeys began with iOS 16, which marked the introduction of this technology within the ecosystem. By the time iOS 17 rolled out, Apple had seamlessly woven passkey support for Apple ID and started allowing third-party apps such as NordPass to manage passkeys on mobile devices.
Today we’ll explore the nuances of passkeys and showcase how easy it is to enable, store, and manage passkeys on your Apple device.
Contents:
How passkeys work on Apple devices
At its core, a passkey is a pair of matching cryptographic keys. When you sign up for a service that supports passkey authentication, two cryptographic keys are created: a public key, which is stored on the service's server, and a private key, kept securely on your device. The crux of this pairing is its dependency — one key is ineffective without the other.
When you log in with passkeys, the server sends a request to your device, which responds with the corresponding passkey. Your identity is then verified at the device level, often through extra layers of authentication such as biometrics, like Face ID or Touch ID. Access is granted only when both keys match.
When compared to password-based authentication passkeys offer enhanced security on multiple fronts. They are resistant to phishing and eliminate the issues of forgotten or reused passwords. The added layer of biometric verification ensures that even if your device is compromised, your data remains out of reach.
Passkey requirements for Apple devices
To use passkeys on your Apple device you need:
An iPhone or iPad running iOS 16 or later, or a Mac on macOS Ventura or later.
Two‑factor authentication enabled on your Apple ID.
iCloud Keychain switched on so the passkey synchronises between your Apple devices.
Safari 16 or any browser that supports the WebAuthn standard.
A website or app that already offers passkeys.
How to use passkeys on your Apple device
After confirming your device meets the above requirements, you can create, use and remove passkeys entirely within Settings and Safari.
How to create passkey on an Apple device
Open “Settings” and select “Passwords,” then authenticate via Face ID or Touch ID.
Tap “Create Passkey,” or choose the passkey option when registering on a supported website in Safari.
Use a clear label – typically the name of the service – for easier identification.
How to log in with a passkey
In Safari or a native app, navigate to the service’s login screen.
Select your account and tap the passkey option instead of entering a password.
Confirm identity with Face ID, Touch ID or your device passcode to complete authentication.
How to delete an Apple passkey
On iOS or iPadOS:
Open “Settings.”
Select “Passwords.”
Locate the passkey entry, swipe left and tap “Delete.”
On macOS:
Launch “Keychain Access”
Filter for Passkeys
Right-click the credential and choose “Delete.”
Please note that removing a passkey forces the service to revert to password-based login on the next attempt.
Why should you choose NordPass for passkey management?
Apple’s native storage works perfectly inside its own ecosystem, yet three limitations arise the moment you step outside it.
First, passkeys are confined to the iCloud Keychain or the native Passwords app, so there’s no native access on Windows, Android, or Linux. Second, you can’t export individual keys for backup or audit. Third, sharing is limited to small family groups added in iOS 17.
NordPass removes these limitations by offering an encrypted vault that keeps passwords, passkeys, credit cards, personal information, secure notes, and more in the same place, synchronized across iOS, Android, Windows, macOS, Linux, and any major browser. You can inspect, rename, delete, or share a passkey exactly as you would a password.
How to manage passkeys in NordPass
With the introduction of iOS 17, Apple has made it even more convenient for users to embrace the security of passkeys by allowing third-party apps such as NordPass to manage passkeys on mobile devices. If you want to use NordPass as your primary passkey manager you first need to install the app on your iOS device or add the extension to a browser.
Saving a passkey in NordPass
Navigate through websites or apps as you typically do.
Be attentive to sites or apps offering passwordless login options.
When presented with an option to use a passkey or integrate one into an account, choose it.
A NordPass prompt will emerge, guiding you to save the passkey.
Follow the provided steps to ensure it's securely stored.
Logging in with a stored passkey:
Access the website or app where you've saved the passkey.
Select the passwordless login feature.
NordPass will prompt you to use the stored passkey.
Adhere to the on-screen guidelines to authenticate and access your account seamlessly.
What else can you do with a passkey in NordPass?
You can open the passkey to see its creation date and the exact domain it’s tied to, add plain‑text notes such as “work account” or “family plan,” or send the key to another NordPass user over an end‑to‑end encrypted channel. Because the vault syncs in real time, any change (renaming the passkeykey, deleting it, or restoring it from the recycle bin) reflects across every device moments later.
Beyond convenience, a cross‑platform vault such as NordPass means you aren’t forced to pick sides. Whether you carry an iPhone and a Windows laptop, or upgrade to an Android tablet next year, your passkeys stay in reach.
FAQ
For services that support passkeys, passwords become unnecessary. However, some sites still require traditional passwords. NordPass can store both types of credentials to ensure comprehensive coverage.
Native Apple passkeys in iCloud Keychain do not synchronize to Windows or Android. To use passkeys across platforms, employ NordPass or another passkey-ready password manager.
A variety of Apple devices support passkeys, including iPhones running iOS16 or later, Mac devices running MacOS Ventura or later, iPads running iPadOS 16 or later, as well as Apple TVs running tvOS 16 or later.
Passkeys replace passwords with a pair of cryptographic keys: a private key that never leaves your device and a public key stored on the service’s server. Because no shared secret is ever transmitted or saved, breaches can’t expose anything usable. Unlocking the key with Face ID, Touch ID, or your passcode also gives you built-in two-factor security — making passkeys both stronger and simpler than traditional passwords.