Microsoft to Switch from Passwords to Access Keys Starting August 1
Microsoft is set to revolutionise the way users log into their accounts, as the tech giant plans to phase out traditional passwords from its Authenticator app starting August 1, 2025. This move marks a significant step towards a passwordless future, aiming to enhance login security and minimise risks associated with passwords.
According to a CNET survey, a staggering 49% of adult internet users in America use passwords that are relatively easy to guess. Moreover, the same password is often used for multiple accounts, which increases the vulnerability to password reuse attacks. To combat these issues, Microsoft is introducing new login methods, such as passkeys, biometrics (like fingerprint or facial recognition), and PINs.
These new login methods use cryptographic credentials stored on the device, offering stronger security against phishing and password reuse attacks. The Authenticator app will continue supporting two-factor authentication (2FA) codes alongside passkeys and biometrics for sign-in security.
Key details of this transition include the disabling of password autofill in the app from July 2025, the inability to create new passwords since June 2025, and the deletion of stored passwords as of August 1. The password management functions are being migrated fully to Microsoft Edge browser, which now handles saved credentials with built-in protections.
This shift towards a passwordless future is part of Microsoft’s broader strategy to improve login security and reduce the inherent risks associated with passwords, such as guessing, reuse, and phishing vulnerabilities. The new login methods are designed to provide a more secure and user-friendly experience, eliminating the need for users to remember complex passwords.
For those interested in staying updated on this development, Microsoft's Telegram channel, @expert_mag, provides additional news. Security keys, which are considered a more effective alternative to passwords according to CNET reviewers, are also expected to be part of the new login methods. These may include access keys, PIN codes, graphical keys, or biometric login (fingerprint or facial recognition).
In conclusion, Microsoft's move towards a passwordless future represents a significant leap in digital security. By adopting new login methods that prioritise user convenience and security, Microsoft is setting a precedent for other tech companies to follow, ultimately creating a safer online environment for all users.
In light of the upcoming change, Microsoft plans to incorporate security keys like access keys, PIN codes, graphical keys, and biometric login (fingerprint or facial recognition) as part of the new login methods for its Authenticator app. To further bolster security and reduce phishing vulnerabilities, the tech giant is also focusing on passkeys and two-factor authentication (2FA) codes as additional login options.
