# Passkey authentication
### Purpose
This guide helps Members understand:
* What passkey authentication is
* When passkey authentication is required
* How to complete passkey verification successfully
***
### Prerequisites
Before using passkey authentication:
* You have successfully entered your email and password
* Passkey authentication is enabled by your organization
* You are using a supported device and browser
* A passkey has already been registered for your account
***
### I already understand. How do I proceed step by step?
***
#### 1. When Passkey Authentication Is Triggered
Passkey authentication may be required when:
* The organization enforces passkey-based authentication
* Passkey is configured as the default MFA method
* Risk-based access control requires stronger verification
* You are signing in from a new or untrusted environment
***
#### 2. Passkey Authentication Flow
**Step 1: Passkey Prompt Is Displayed**
After entering your email and password, the system prompts you to verify using a passkey.
***
**Step 2: Continue with Passkey**
Click **Continue** to start passkey verification.
***
**Step 3: Verify Your Identity**
Verify your identity using one of the following methods, depending on your device:
* Fingerprint
* Face recognition
* Device PIN
* Hardware security key
Follow the on-screen instructions provided by your device or browser.
***
#### 3. Authentication Result
After successful passkey verification:
* Sign-in is completed
* You are redirected to your dashboard or workspace
* Your session is established securely
***
### Failure and Retry
If passkey authentication fails:
* You may retry using the same device
* You may be prompted to use an alternative verification method (if allowed)
* Repeated failures may temporarily block authentication
***
### Security Benefits
Passkey authentication provides:
* Phishing-resistant authentication
* No shared secrets (no passwords or OTPs)
* Strong device-bound security
* Protection against credential stuffing and replay attacks
***
### Important Notes
* Passkeys are device- and browser-specific
* Passkey availability depends on your device and browser
* Losing access to your device may require administrator assistance
* Passkeys do not replace organization security policies
***
### Summary
| Item | Member |
| --------------------- | -------------------------- |
| Passkey Configuration | ❌ Not allowed |
| Passkey Usage | ✅ Supported (if enabled) |
| Authentication Type | Phishing-resistant |
| Device Requirement | Supported browser & device |
| Fallback Method | Policy-dependent |
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://oten.gitbook.io/identity-support/user-guide/business-account/members/passkey-authentication.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.