Security Key (WebAuthn /2FA / MFA) Quick Start Guide
What Is It?
WebAuthn is a modern authentication standard that lets you sign in without a password. Instead, you use a security key (e.g., YubiKey), a biometric device, or your mobile device.
Adding a Security Key
1. Go to Your Profile
• Log in, click your name in the top-right corner, and select Profile.
2. Scroll to “Security Keys”
• Look for the Security Keys section on your profile page.
3. Name Your Key & Register
• Enter a friendly name (e.g., “My YubiKey”) and click Register New Key.
• Follow any on-screen prompts to insert and tap your key.
4. Browser Compatibility Check
• The system verifies if your browser supports passwordless login. If it does, you’re good to go.
Signing In With a Security Key
1. Choose Your Login Method
• On the login page, select Sign in with Security Key.
2. Authenticate
• Insert and tap your security key when prompted.
3. Access Granted
• If verification succeeds, you’ll be logged in securely—no password required.
Why Use a Security Key?
• Extra Security: Uses strong public key cryptography to protect your account.
• Convenience: No need to remember passwords—your physical key handles it.
• Flexibility: An alternative to traditional passwords or Google SSO.
Passwordless vs 2FA vs MFA
• Passwordless: You don’t need a password at all; the security key alone grants access.
• 2FA (Two-Factor Authentication): Typically uses a password + an extra factor (like an app code).
• MFA (Multi-Factor Authentication): Similar to 2FA, but can include multiple layers (password, security key, biometrics). Our passwordless option replaces the password entirely.
Important Notes
• Browser Compatibility: Use a supported browser (Chrome, Firefox, Edge, Safari).
• Local Testing: If testing locally, use localhost instead of an IP address.
• Unique Challenges: Each login uses a one-time challenge for added security.
If you have questions or need help, please contact our support team.