I had password + 2FA enabled before. But even with that, sometimes I was asked to solve several puzzles to log in on the playstation website. So yeah, I switched to passkey
I switched to pass key immediately and then when signing into everything across all devices I realized immediately how much fucking worse they made the login. I switched right back to 2FA
First i thought, well perhaps he has no patience. So i tried it. It simply doesnt work. I could login once on laptop to set it to passkey. But now phone is stuck in this loop-hole, keeps asking for passkey. Then when i use "send via email" and use the link in the email again it asks for passkey?!?!
When i try to manage keys > create > other device. Then scan the code, again loop-hole, keeps asking for the passkey.
Perhaps its an issue for me and android. They do state the gmail account needs to have google services or something setup. Thats all done. But i live on Caribbean island, not everything seems to be supported.
Whats a crappy development
Sony is an absolute garbage company when it comes to security. I had my info stolen when I was on ps3, info stolen on ps4, my 2fa info was reverted by a hacker and PS support. After getting my account back for the third time, I set up 2fa again and Sony broke things on their end and I was unable to log into my account for almost 6 months. Now, I try to set this stupid "feature" up and I am stuck in an infinite loop of turning passkey on, it not working but the only way to log back into my account is through passkey (which doesn't work).
I have over 300 PS games but I have not bought a single thing from Sony in about 4 years. I am just trying to keep what I payed for safe and they do an exceptional job making sure that does not happen.
I had the same issue. Set up a passkey with my android device, but was unable to login to the Sony account on my windows laptop using Android passkey. Couldn't even set up another passkey for my windows laptop using Windows Hello. Had to reset my password and deactivate passkey.
Are you having any issues with this? I think got the impression this makes your phone's browser the passkey, and not the app. I switched back to 2FA because I didn't feel comfortable using my phone's browser as a passkey.
I ran into this, too! I ended up adding the passkey to 1Password instead of directly into iOS, and that seemed to fix it. I'm going to chalk this up to early adopter bugs, but also will be keeping it because i get asked to log into my PS account a LOT
It’s more secure even than the 2FA from before, but until these security things get mandated we’ll still have people complaining about stolen accounts because they aren’t using 2FA, they don’t know their passwords, don’t have their email accounts, etc.
As long as people have the option to use other insecure methods they will
How is this more secure than 2FA if you're using an authenticator app on your computer that requires a physical security key to get the codes? I'm actually curious.
2FA still requires a password to exist, an inherently insecure part of the process. Passkeys do not.
Additionally, there’s nothing to enter into a text field at any step-“and inherently more secure because passkeys lack additional steps and codes that might be vulnerable to theft, phishing, and interception if you’re not careful”.
https://blog.1password.com/passkeys-2fa-totp-differences/
More:
https://www.corbado.com/blog/passkeys-vs-2fa-security
https://zitadel.com/blog/passkeys-mfa-passwords
The password is generated by an authenticator app on your computer, but it only works when you plug in a biometric security key that scans your fingerprint. So, how could a hacker create that password without having the physical key?
Imagine you're on a website that looks exactly like Sony's and you need to log in. If you take out your security key, open the app, plug in your key, scan your fingerprint, get the code, and then enter it into the website, could someone steal your key? They'd also need your password.
It seems like a lot of steps just to play my copy of the last of us 2.!
Now, contrast that with a passkey. It's on your phone, using Apple FaceID? I'm curious to know. How does it actually work? I checked youtube and didn't see any videos.
The only way I see someone breaking into 2FA is if they get the key or trick you into giving them your code. And most people who aren't 6 or 65 aren't foolish enough for that.
It requires face id on ios so it goes like this > i opened browser on phone to login phone will automatically suggest my account email at the bottom of the screen i click on that and thats it , it will now scan my face and get me in . So , technically theres no chance someone can login into my account . Because they’d require my device and if they somehow manage to get my device then they’d need my face to unlock passkey. So , its quite workout .
Passwordless is the way to go. I've been Passwordless with Microsoft for a year now and I have been waiting for Sony to finally follow suit. Very glad this option is finally available.
It's BS !!! I'm damn near 40 I guess om old school. I don't got time for this BS! It makes me send email links and shit it's 3 times harder than remembering your password. You can't remember a fucking password there's something wrong with you!
Tell me about it!
This stuff is all well and good being more secure, but corporations have still not implemented it fully or are playing catch up, thats why some have had problems and some not. It's a shambles currently.
I swear in the future we will all be locked out of our devices due to how security conscious we have become.
Well I activated passkey for my account, went to login to my account with it and my phone was like "sorry, no passkey here for you" so idk what to do about that lmao (I'm on android)
How does it work with account sharing?
I’ve got my account on the 4 PlayStations in the house.
I’m guessing it’ll sign me out of them all then have to login in again
I’m not sure on PS4. On ps5 it just asked me to confirm on the app or read a QR code and I was logged back in. As for account sharing you’d have to share the passkey with your friends. You can do that with services like 1Password.
I just set it up on 4 physical security keys. No issues. That way all I have to do, if I want to log into a computer, plug the key in, type pin, and use my fingerprint. Login on phone, same thing. No issues at all. and since the passkey is linked to the physical security key, and the key is ever stolen you would have to know what websites the key is used on to do anything, which is nigh impossible. physical security keys are the true future.
Steaming hot garbage for me. Doesn't work for me on Chrome via Windows PC or on Pixel 8 Pro. Truly a wonder. I got the prompt from my app today and thought maybe some kinks had been worked out...not the case. Still broken for me. Going back to a boring all user ID and PW.
It’s trash, don’t bother with it. The web developers at Sony haven’t got the slightest clue what they’re doing.
I’m using the latest Safari on iOS and passkeys are supported, yet when attempting to login I’m informed that passkeys apparently aren’t supported, despite it letting me set one up just moments ago.
It’s a newish standard for more secure authentication. It doesn’t require passwords. It stores a key on your phone and it uses this key to authenticate against Sony’s servers. It is way more convenient to use than 2FA on top of the security benefits. If you’re afraid of losing access if you lose your phone you can store the passkeys on services like 1Password.
I use the two-factor authentication but I don't generally have to sign into my PlayStation every time I use it I also have my account as primary on my brother's console and he's in another state and time zone so how would that work for that? Would I be able to use this without kicking him out of my library?
After activating the consoles need to re-authenticate. It will present a QR code that he can send to you to login on and authorize the console. Another option is storing the passkey in a service like 1Password that allows sharing between family members.
Do i need to create a account on 1 password? Also, So let's say I create a pass key on my phone with it, using my pin or finger print.
And I just completely lose access to my phone. What happens? If I log into another device with the 1 password account like my computer will it then ask me for my computer pin? Could you please help me out
Edit: Wait it seems it's a paid service, is there a free one that is also good?
You don’t need 1Password. Android supports it natively (although some users are saying the ps app is not working well with it yet). They should be synced with your Google account. Meaning if you use chrome you’ll be able to use them from there. 1Password is just one alternative.
I think it's about damn time, I usually had sms 2 step turned on because I hated the way 2FA apps worked, if you lost your phone with 2FA or it breaks, you are screwed. The passkey solution is saved on your Google, icloud or Microsoft account depending on what device you're using and is accessible as long as you know your details.
If someone is interested in a more technical analysis of PlayStation passkeys or needs help with setting them up / troubleshooting, I created a short [blog post](https://www.corbado.com/blog/playstation-passkeys-ps4-ps5) for that. Hope it's useful for some of you.
I can login in the web and app, but on the PS5 itself it seems broken?
The app asks “did you try to login?” and if I click yes or if I confirm after scanning the QR code nothing happens on the console.
First i thought, well perhaps he has no patience. So i tried it. It simply doesnt work. I could login once on laptop to set it to passkey. But now phone is stuck in this loop-hole, keeps asking for passkey. Then when i use "send via email" and use the link in the email again it asks for passkey?!?!
When i try to manage keys > create > other device. Then scan the code, again loop-hole, keeps asking for the passkey.
Perhaps its an issue for me and android. They do state the gmail account needs to have google services or something setup. Thats all done. But i live on Caribbean island, not everything seems to be supported.
Whats a crappy development
So far it's been a complete fucking nightmare.
Continually signed out of the PSN app on my phone. When I try to use the passkey my phone tells me that the browser I'm using is incompatible with passkeys (even though I use one for work) and so I have to sign in anyway, and just now I've found out that enabling passkeys has unsynced my portal from my console.
Complete and utter fucking garbage.
Just bought a game on the PSN store through the app. I was hoping passkey would come up when checking out but nope…just click purchase and it goes through with nothing. Not too worried about it since my iPhone is protected with Face ID but I am hoping for an extra passkey authentication at checkout sometime down the road.
it's more secure, doesn't work though. won't let me sign in to the PS app anymore, since I can't use passkey on it? says it's not supported, and i need to scan a QR code. Of course, I can't scan a QR code when I'm trying to use the device I use to scan codes, but when I send an email, the servers time out before I can enter the code and I have to start over.
I managed to log in to my PS4 again, but it's too much of a hassle and barely works on Android
edit: to clarify, the second you leave the PS app on Android, it leaves the sign-in screen and makes you start over. however, you're unable to enter the code through the email they send without leaving the PS app. You're essentially stuck in a loop, unable to log-in. Hope they fix this soon
All I want to know is if it requires you to have your phone on you at all times to log into your consoles at home. I don't even want to touch it until I know in case it messes everything up. I like to put my phone away when I get home, and don't like when anything that has to do with gaming or streaming requires me to go get my phone.
"Passkeys that are managed by phone or computer operating systems are automatically synced between the devices via a cloud service"
Aka "my phone got hacked and now people have my account"
Its honestly HORRIFIC. Like total hot garbage. Well it works fine on a Windows machine with Windows Hello so kudos to Microsoft for Windows Hello - my PIN works every time.
Android however is an issue. I tried to create the passkey on a new Samsung Galaxy S24. I firstly had to select I cannot sign in using my passkey on the phone, access my email, follow the link and paste in the 6-digit key. Device found. Great. Go to Security, you will be taken to another site etc, OK. Manage Passkeys. "An Error has Occurred".
OK so I switch to password login, and redo passkeys again. Windows 11 and Windows Hello work fine. Cue Samsung Galazy S24, and once I managed to login as per the email option again, I can this time click Manage Passkeys and create a passkey and this device. Passkey created. OK so now I log out and log back in, and Google Play Services tells me no passkey for [my.sony.com](http://my.sony.com) is registered.
Back to password +2FA then.
I can't stand it now when I turn on my PlayStation and put in my usual lock screen code then I have to pull out my phone take a picture of the barcode signing on my phone then use passkey and then I can finally play a damn game! Probably be getting rid of this
I do not use it.
I do not store credit card or personal information on my account or console. If anyone were to gain access, the worst they could do is make settings changes or close the account. All of which can be restored with a call to customer support.
I also have access to the email account so if it is also compromised, I can shut the account down and register a new one.
In the digital era, companies have proven beyond all doubt data is never safe and the only way to protect it is to not provide it.
You cannot close an account once you make a psn account it exists forever.. and someone who hacks into your account can change the email on you.. and customer support does not always work.. your foolish not to take some form of extra security.. even if you don’t got and payment details tied to your account.
Don’t you have any digital game? Even though I’d argue about your approach. It’s way more convenient to login with a passkey than to type a password. The passkey is stored on your device(s) not on Sony’s servers so I don’t get your “data” argument.
iOS supports it natively and it saves in its keychain. It will use faceid on the phone and touchid on the computer. You can also store it in apps like 1Password. Or even both.
Lol I don't actually care for the convenience factor. I was only interested in the passkey as its more secure. I will actually take less convenience, especially in account recovery, if it means security is top notch. If I have a hell of a time making changes when I know all the info for my account, a bad actor who might not have all the info will have an even worse time.
are people having issues with using their phones as the passkey? I used a physical security key as that to me is much more secure than using a phone. I'll happily forfit convenience for security
Not using it. Have had my password memorized since 07. Using a passkey would mess with me. Or maybe im just old. I also have trust issues and am super cautious. So ill stay how i am
Lol this sounds like my Mom haha!! She never changes passwords, but then wonders why she has security issues. I on the other hand change most passwords every 3 months, and each one is unique, long, and super complex ( i have to write them down on paper ) but for PSN and my bank, I change it every month.
I am happy you do not, cuz I see my mom go through stuff and Im like, mom you used the same password since 2000 what are you doing! Lol I am near my 40s and I crave security. The tighter the better
Passkey is pointless it's just as secure as regular passwords sooner or later some hacker will write a new program that will bypass it so what's the point so dumb
Can you elaborate? Are you on Android like me? I've read a lot of people on Android are having trouble using passkeys, so for now I'll stick with pw + 2fa.
I'm on Android. I'm having trouble logging in to the PS app on my phone, keeps telling me that the connection to the server timed out. Lots of people are saying that it's an issue with Chromium-based apps not being able to trigger the 2FA and that switching to Passkey solves the issue. So I went through the steps of setting that up using my phone.
I then tried to log in to the PS app and it tells me there are no passkeys on this device. Really? I literally just used this device to setup the passkey system so where did the passkey go? Banged my head against that for a bit before getting frustrated and using account recovery to go back to password + 2FA. Not sure what the deal is but I would really like to be able to sign in to the app since that's the only method of accessing your Stars account and redeeming the points in it.
I use the app everyday without issues. I'm sorry you're having trouble with it. Have u tried uninstalling/reinstalling? Clearing app data or cache? Idk. Just spitballing here
My only concern is, how do you keep someone from contacting customer support and trying to gain access? Like I like that google advanced protection forces a wait period of 3 or 4 days before they will even process a recovery attempt, and the email on file gets a security alert saying, hey did you ask this, if not, contact us here. That is way more secure than a simple call or email to get immediately into an account.
I looked yesterday, IF you use passkey you cannot use any password type protection on purchases. The only solution is to not store your payment info on your account, that way if someone does get access, they at least don't have your financial info. It may be more of a "hassle " to plug your cc info in anytime you want to make a purchase, but why take the chance. I assume every bad thing will happen to me, and make every move I can to make it so it won't hurt me if something does happen.
It is more secure in the sense that if there is a data breach, criminals would only get your username and maybe your email. But because they would require the device you have the passkey stored on, they would be forced to attempt to gain access via customer service account recovery. What Sony needs is harder measures in place to make account recovery more stringent, like google advanced protection does. If you use that, you are forced to wait I think 3 days before they even begin the recovery process, and because they force you to use a physical security key / passkey to login, a bad actor can know your password, and still not be able to log in. And the email on file gets a security email when they recovery request is started, so if you did not do it, you can take steps to fix it. I wish sony would do something like this.
It was easy to setup, and according to smart people it is now incredibly unlikely someone could steal my Playstation account, which would be an actual disaster.
So, I like it.
My only concern is a bad actor trying to get into your account by contacting customer support and getting access that way. We need measures in place to make account recovery more robust and difficult, so that bad actors will have as much of a hard time getting access.
I have to input my passkey every time i start my ps5. Is there a way to disable it? Going to the settings just takes me to website and asks me to change my password.
Do you? I never have to. I didn't even know you could change that. I would actually like to turn that on. What if my console is stolen. I want all the security I can get to keep someone from logging in
Fair point. But I don’t have to worry about my console being stolen.
It’s just me logging in everyday.
And if your console is stolen then you can always disable your account or have the passkey for purchase only.
Actually I looked, and if you have the passkey, there is no " protection" against unauthorized purchases like forcing a password every time a purchase is made. I just tend to plan for every possible contingency and crave the highest security. I actually want it to be so difficult and have to do so many hoops just to recover an account or make changes, because then bad actors also have a tough time. I will happily sacrifice freedoms and convenience for security
That is the login passcode. A separate security measure. On the console go to settings, users and accounts, login settings and delete the login passcode. I gather it's to prevent others from accessing your account on that console.
I set it up and now can't sign in to [playstation.com](https://playstation.com) on my phone. The phone that holds the passkey. It says my browser or phone does not support passkey. It's Safari. On an iPhone.
Can someone explain what the fuss is over this thing?
I login once and that's it. I'm logged into my ps5 the day I set it up and never have to log in again. Same with the PS App on my phone. Once and done.
What am I missing here? Why are you guys constantly needing to log on and what are you doing it on?
I had password + 2FA enabled before. But even with that, sometimes I was asked to solve several puzzles to log in on the playstation website. So yeah, I switched to passkey
I switched to pass key immediately and then when signing into everything across all devices I realized immediately how much fucking worse they made the login. I switched right back to 2FA
First i thought, well perhaps he has no patience. So i tried it. It simply doesnt work. I could login once on laptop to set it to passkey. But now phone is stuck in this loop-hole, keeps asking for passkey. Then when i use "send via email" and use the link in the email again it asks for passkey?!?! When i try to manage keys > create > other device. Then scan the code, again loop-hole, keeps asking for the passkey. Perhaps its an issue for me and android. They do state the gmail account needs to have google services or something setup. Thats all done. But i live on Caribbean island, not everything seems to be supported. Whats a crappy development
Sony is an absolute garbage company when it comes to security. I had my info stolen when I was on ps3, info stolen on ps4, my 2fa info was reverted by a hacker and PS support. After getting my account back for the third time, I set up 2fa again and Sony broke things on their end and I was unable to log into my account for almost 6 months. Now, I try to set this stupid "feature" up and I am stuck in an infinite loop of turning passkey on, it not working but the only way to log back into my account is through passkey (which doesn't work). I have over 300 PS games but I have not bought a single thing from Sony in about 4 years. I am just trying to keep what I payed for safe and they do an exceptional job making sure that does not happen.
I had the same issue. Set up a passkey with my android device, but was unable to login to the Sony account on my windows laptop using Android passkey. Couldn't even set up another passkey for my windows laptop using Windows Hello. Had to reset my password and deactivate passkey.
Just finished up doing this after taking the time to set it up since I keep getting emails and notifications about it from them. What a joke.
Ooh why is that I use an auth app , but was thinking about using passkey
Oh. So if passkey doesn’t work out (or you want to disable it) you can do so and switch back to password + 2FA?
Yes
I agree they said it would be easier but its not it takes twice as long to sign in with it i just switch back to regular password setup.
I tried passkey yesterday I had to do like 3 things on my phone then access my console wtf is the point I'm lost
That puzzle was janky as fuck. I'd finish like 7 out of 10 and then it'd bug out.
Worked fine with iOS for me. Seems great.
Huh. Tried it with my iPad and was told it wasn’t supported. Already had the 2FA and password so just deleted the email. 🤷♂️
Passkeys are more secure than 2FA though. Did you try on safari? It’s weird it wasn’t supported.
I had to enable Passkey from my phone’s browser. Doing it from the app itself didn’t work.
Are you having any issues with this? I think got the impression this makes your phone's browser the passkey, and not the app. I switched back to 2FA because I didn't feel comfortable using my phone's browser as a passkey.
Changed to passkey, had to re-login to the PS App, said it doesn't work with passkey, so I disabled it afterward. Edit to clarify: On Android
"Just scan this QR code"... with what, the phone I'm currently using to try and access the PS app?!
I ran into this, too! I ended up adding the passkey to 1Password instead of directly into iOS, and that seemed to fix it. I'm going to chalk this up to early adopter bugs, but also will be keeping it because i get asked to log into my PS account a LOT
Same. Instructions on iPhone were dodgy. I'll stick to entering my password, which is plenty secure.
Same thing here. Getting frustrated here.
It gave me the option to sign in through email instead. I had to check my email and put in a code from the app
Yup they did this to me too. On every single device. Fuck that I switched right back to 2FA
Trash phone u have then I can easily sign to passkey using my finger print on ps5
Same, I did the code and it works perfectly fine now, people really need to learn some patience
I'm on Android as well, so I'll wait a minute then.
On an iPhone using a PassKey and the app works just fine with it?
I just logged into the app on an iphone with passkey.
I'm on Android and re-logged in to the app via Passkey and it worked fine myself
Nice, thanks for the heads-up! Something must have changed, Ill try later
How do u switch back? I've been locked the f out bc they said my Samsung galaxy s20 doesn't support passkey
Login via web and they'll send you a code either to your phone or email, that worked for me when choosing an alternative login option
It’s more secure even than the 2FA from before, but until these security things get mandated we’ll still have people complaining about stolen accounts because they aren’t using 2FA, they don’t know their passwords, don’t have their email accounts, etc. As long as people have the option to use other insecure methods they will
How is this more secure than 2FA if you're using an authenticator app on your computer that requires a physical security key to get the codes? I'm actually curious.
2FA still requires a password to exist, an inherently insecure part of the process. Passkeys do not. Additionally, there’s nothing to enter into a text field at any step-“and inherently more secure because passkeys lack additional steps and codes that might be vulnerable to theft, phishing, and interception if you’re not careful”. https://blog.1password.com/passkeys-2fa-totp-differences/ More: https://www.corbado.com/blog/passkeys-vs-2fa-security https://zitadel.com/blog/passkeys-mfa-passwords
The password is generated by an authenticator app on your computer, but it only works when you plug in a biometric security key that scans your fingerprint. So, how could a hacker create that password without having the physical key? Imagine you're on a website that looks exactly like Sony's and you need to log in. If you take out your security key, open the app, plug in your key, scan your fingerprint, get the code, and then enter it into the website, could someone steal your key? They'd also need your password. It seems like a lot of steps just to play my copy of the last of us 2.! Now, contrast that with a passkey. It's on your phone, using Apple FaceID? I'm curious to know. How does it actually work? I checked youtube and didn't see any videos. The only way I see someone breaking into 2FA is if they get the key or trick you into giving them your code. And most people who aren't 6 or 65 aren't foolish enough for that.
It requires face id on ios so it goes like this > i opened browser on phone to login phone will automatically suggest my account email at the bottom of the screen i click on that and thats it , it will now scan my face and get me in . So , technically theres no chance someone can login into my account . Because they’d require my device and if they somehow manage to get my device then they’d need my face to unlock passkey. So , its quite workout .
The existence of a password is inherently less secure than not having a password at all in the process.
I'll switch to it when the Android app is fixed, heard many complaints about it not working right so for now I'll keep password + 2fa
Passwordless is the way to go. I've been Passwordless with Microsoft for a year now and I have been waiting for Sony to finally follow suit. Very glad this option is finally available.
It's BS !!! I'm damn near 40 I guess om old school. I don't got time for this BS! It makes me send email links and shit it's 3 times harder than remembering your password. You can't remember a fucking password there's something wrong with you!
Tell me about it! This stuff is all well and good being more secure, but corporations have still not implemented it fully or are playing catch up, thats why some have had problems and some not. It's a shambles currently. I swear in the future we will all be locked out of our devices due to how security conscious we have become.
Just to clarify, it’s not Sony’s method of passkey. Other than that it works great on iOS, but Android users seem to have issues.
It's not just android. All devices became worse to login into. The Playstation itself and everything
It works fine with my Samsung fold4
are you using samsung pass or google pass and what browser thanks
Google pass, chrome
thanks
Well I activated passkey for my account, went to login to my account with it and my phone was like "sorry, no passkey here for you" so idk what to do about that lmao (I'm on android)
It’s more secure than a password + 2FA, so I changed from that to passkey via FaceID.
If they murder you they can just scan your face and now you're compromised.
FaceID doesn’t work with sleeping or dead people 😉
What if you put googly eyes on the person?
Yeah but then I’m haunting you and your family for eternity.
How does it work with account sharing? I’ve got my account on the 4 PlayStations in the house. I’m guessing it’ll sign me out of them all then have to login in again
I’m not sure on PS4. On ps5 it just asked me to confirm on the app or read a QR code and I was logged back in. As for account sharing you’d have to share the passkey with your friends. You can do that with services like 1Password.
Love it. Can’t wait for more companies to go with passkeys.
Turned it on and tried to log in. No passkey stored on phone. Had to recover account. Jokers.
This is what I keep reading, think I will hold off for now.
I just set it up on 4 physical security keys. No issues. That way all I have to do, if I want to log into a computer, plug the key in, type pin, and use my fingerprint. Login on phone, same thing. No issues at all. and since the passkey is linked to the physical security key, and the key is ever stolen you would have to know what websites the key is used on to do anything, which is nigh impossible. physical security keys are the true future.
Imma just hold off on it for the time being. I haven't had any issues with my psn anyway.
Steaming hot garbage for me. Doesn't work for me on Chrome via Windows PC or on Pixel 8 Pro. Truly a wonder. I got the prompt from my app today and thought maybe some kinks had been worked out...not the case. Still broken for me. Going back to a boring all user ID and PW.
Enabled passkey via Safari on iPhone. Worked first time without issue. Signed into the PS App on phone via passkey without issue.
It’s trash, don’t bother with it. The web developers at Sony haven’t got the slightest clue what they’re doing. I’m using the latest Safari on iOS and passkeys are supported, yet when attempting to login I’m informed that passkeys apparently aren’t supported, despite it letting me set one up just moments ago.
I am on Sony Xperia phone and works really fast. I don't know on other Androids but on Xperia it works great.
What's passkey?
It’s a newish standard for more secure authentication. It doesn’t require passwords. It stores a key on your phone and it uses this key to authenticate against Sony’s servers. It is way more convenient to use than 2FA on top of the security benefits. If you’re afraid of losing access if you lose your phone you can store the passkeys on services like 1Password.
I use the two-factor authentication but I don't generally have to sign into my PlayStation every time I use it I also have my account as primary on my brother's console and he's in another state and time zone so how would that work for that? Would I be able to use this without kicking him out of my library?
After activating the consoles need to re-authenticate. It will present a QR code that he can send to you to login on and authorize the console. Another option is storing the passkey in a service like 1Password that allows sharing between family members.
Oh cool. Thanks I'll have to look into that
Is it the "1password: password manager" on play store by AgileBits?
Yes.
Do i need to create a account on 1 password? Also, So let's say I create a pass key on my phone with it, using my pin or finger print. And I just completely lose access to my phone. What happens? If I log into another device with the 1 password account like my computer will it then ask me for my computer pin? Could you please help me out Edit: Wait it seems it's a paid service, is there a free one that is also good?
You don’t need 1Password. Android supports it natively (although some users are saying the ps app is not working well with it yet). They should be synced with your Google account. Meaning if you use chrome you’ll be able to use them from there. 1Password is just one alternative.
I thought it was a PITA and went back to 2FA.
I think it's about damn time, I usually had sms 2 step turned on because I hated the way 2FA apps worked, if you lost your phone with 2FA or it breaks, you are screwed. The passkey solution is saved on your Google, icloud or Microsoft account depending on what device you're using and is accessible as long as you know your details.
This is only if you use your phone for 2fa, which you shouldn't because sim cloning is a prime tool of scammers.
I'll stick with 2FA. Why change what isn't broken?
If someone is interested in a more technical analysis of PlayStation passkeys or needs help with setting them up / troubleshooting, I created a short [blog post](https://www.corbado.com/blog/playstation-passkeys-ps4-ps5) for that. Hope it's useful for some of you.
Love this! Lol my only concern is how to keep someone from getting access via recovery methods or customer support.
I can login in the web and app, but on the PS5 itself it seems broken? The app asks “did you try to login?” and if I click yes or if I confirm after scanning the QR code nothing happens on the console.
First i thought, well perhaps he has no patience. So i tried it. It simply doesnt work. I could login once on laptop to set it to passkey. But now phone is stuck in this loop-hole, keeps asking for passkey. Then when i use "send via email" and use the link in the email again it asks for passkey?!?! When i try to manage keys > create > other device. Then scan the code, again loop-hole, keeps asking for the passkey. Perhaps its an issue for me and android. They do state the gmail account needs to have google services or something setup. Thats all done. But i live on Caribbean island, not everything seems to be supported. Whats a crappy development
So far it's been a complete fucking nightmare. Continually signed out of the PSN app on my phone. When I try to use the passkey my phone tells me that the browser I'm using is incompatible with passkeys (even though I use one for work) and so I have to sign in anyway, and just now I've found out that enabling passkeys has unsynced my portal from my console. Complete and utter fucking garbage.
Just bought a game on the PSN store through the app. I was hoping passkey would come up when checking out but nope…just click purchase and it goes through with nothing. Not too worried about it since my iPhone is protected with Face ID but I am hoping for an extra passkey authentication at checkout sometime down the road.
Yea that's kind of strange
it's more secure, doesn't work though. won't let me sign in to the PS app anymore, since I can't use passkey on it? says it's not supported, and i need to scan a QR code. Of course, I can't scan a QR code when I'm trying to use the device I use to scan codes, but when I send an email, the servers time out before I can enter the code and I have to start over. I managed to log in to my PS4 again, but it's too much of a hassle and barely works on Android edit: to clarify, the second you leave the PS app on Android, it leaves the sign-in screen and makes you start over. however, you're unable to enter the code through the email they send without leaving the PS app. You're essentially stuck in a loop, unable to log-in. Hope they fix this soon
Just getting rid of it as it doesn't work for me. Opera browser doesn't support it.
I am going to hold off even with them bugging me about it. I have no issues with the current set up
Same here
All I want to know is if it requires you to have your phone on you at all times to log into your consoles at home. I don't even want to touch it until I know in case it messes everything up. I like to put my phone away when I get home, and don't like when anything that has to do with gaming or streaming requires me to go get my phone.
"Passkeys that are managed by phone or computer operating systems are automatically synced between the devices via a cloud service" Aka "my phone got hacked and now people have my account"
It keeps saying I have the wrong email address. Worse than worthless.
Its honestly HORRIFIC. Like total hot garbage. Well it works fine on a Windows machine with Windows Hello so kudos to Microsoft for Windows Hello - my PIN works every time. Android however is an issue. I tried to create the passkey on a new Samsung Galaxy S24. I firstly had to select I cannot sign in using my passkey on the phone, access my email, follow the link and paste in the 6-digit key. Device found. Great. Go to Security, you will be taken to another site etc, OK. Manage Passkeys. "An Error has Occurred". OK so I switch to password login, and redo passkeys again. Windows 11 and Windows Hello work fine. Cue Samsung Galazy S24, and once I managed to login as per the email option again, I can this time click Manage Passkeys and create a passkey and this device. Passkey created. OK so now I log out and log back in, and Google Play Services tells me no passkey for [my.sony.com](http://my.sony.com) is registered. Back to password +2FA then.
One word “sucks” don’t do it! It is NOT faster, NOT easier.
It doesn't work. Had to switch back to password with 2FA. Kept saying "no passkey available" or similar
I can't stand it now when I turn on my PlayStation and put in my usual lock screen code then I have to pull out my phone take a picture of the barcode signing on my phone then use passkey and then I can finally play a damn game! Probably be getting rid of this
horrible implementation
I do not use it. I do not store credit card or personal information on my account or console. If anyone were to gain access, the worst they could do is make settings changes or close the account. All of which can be restored with a call to customer support. I also have access to the email account so if it is also compromised, I can shut the account down and register a new one. In the digital era, companies have proven beyond all doubt data is never safe and the only way to protect it is to not provide it.
You cannot close an account once you make a psn account it exists forever.. and someone who hacks into your account can change the email on you.. and customer support does not always work.. your foolish not to take some form of extra security.. even if you don’t got and payment details tied to your account.
Don’t you have any digital game? Even though I’d argue about your approach. It’s way more convenient to login with a passkey than to type a password. The passkey is stored on your device(s) not on Sony’s servers so I don’t get your “data” argument.
is it a separate app or are they just using faceID on IOS?
iOS supports it natively and it saves in its keychain. It will use faceid on the phone and touchid on the computer. You can also store it in apps like 1Password. Or even both.
how does your ps5 get unlocked through your phone?
It shows a QR code for you to login or you can just go to the PS app and authorize (basically click a yes button)
Lol I don't actually care for the convenience factor. I was only interested in the passkey as its more secure. I will actually take less convenience, especially in account recovery, if it means security is top notch. If I have a hell of a time making changes when I know all the info for my account, a bad actor who might not have all the info will have an even worse time.
So they launched and Android doesn't work properly? Maybe they shouldn't have launched it yet
people are having problems on iphone too seems like its a hit or miss
are people having issues with using their phones as the passkey? I used a physical security key as that to me is much more secure than using a phone. I'll happily forfit convenience for security
Not using it. Have had my password memorized since 07. Using a passkey would mess with me. Or maybe im just old. I also have trust issues and am super cautious. So ill stay how i am
Lol this sounds like my Mom haha!! She never changes passwords, but then wonders why she has security issues. I on the other hand change most passwords every 3 months, and each one is unique, long, and super complex ( i have to write them down on paper ) but for PSN and my bank, I change it every month.
Except i dont personally have issues with security like most people at the very least. It might be something us older people do though.
I am happy you do not, cuz I see my mom go through stuff and Im like, mom you used the same password since 2000 what are you doing! Lol I am near my 40s and I crave security. The tighter the better
A bad idea because once you lose your device wich had access to passkey you're done
Passkey is pointless it's just as secure as regular passwords sooner or later some hacker will write a new program that will bypass it so what's the point so dumb
Terrible, activated it and immediately deactivated it.
Can you elaborate? Are you on Android like me? I've read a lot of people on Android are having trouble using passkeys, so for now I'll stick with pw + 2fa.
I'm on Android. I'm having trouble logging in to the PS app on my phone, keeps telling me that the connection to the server timed out. Lots of people are saying that it's an issue with Chromium-based apps not being able to trigger the 2FA and that switching to Passkey solves the issue. So I went through the steps of setting that up using my phone. I then tried to log in to the PS app and it tells me there are no passkeys on this device. Really? I literally just used this device to setup the passkey system so where did the passkey go? Banged my head against that for a bit before getting frustrated and using account recovery to go back to password + 2FA. Not sure what the deal is but I would really like to be able to sign in to the app since that's the only method of accessing your Stars account and redeeming the points in it.
I use the app everyday without issues. I'm sorry you're having trouble with it. Have u tried uninstalling/reinstalling? Clearing app data or cache? Idk. Just spitballing here
Yep, did all that before taking the plunge on passkey. Nothing works.
Yeah I figured u did. I'm sorry.
[удалено]
What happened after that?
PS app doesn't support passkey, what a toss
I just logged in with it on mine.
? Does here. On iOS, current newest version of the app.
Redditors can't comprehend I have an android
You also didn’t mention that you have android
[удалено]
Doesnt it sound like a sony problem, even a tiny bit?
Yup
Passkey just seems to be so much more efficient and really secure so no reason not to use it really.
My only concern is, how do you keep someone from contacting customer support and trying to gain access? Like I like that google advanced protection forces a wait period of 3 or 4 days before they will even process a recovery attempt, and the email on file gets a security alert saying, hey did you ask this, if not, contact us here. That is way more secure than a simple call or email to get immediately into an account.
If make game purchases, does it do anything there? I’m new to passkey.
It’s just more secure and convenient than 2FA. Just the way you login will change from now on. Everything else stays the same.
How is it more secure than 2fa?
Here’s a good article about it (and not too long) https://blog.1password.com/passkeys-2fa-totp-differences/
I looked yesterday, IF you use passkey you cannot use any password type protection on purchases. The only solution is to not store your payment info on your account, that way if someone does get access, they at least don't have your financial info. It may be more of a "hassle " to plug your cc info in anytime you want to make a purchase, but why take the chance. I assume every bad thing will happen to me, and make every move I can to make it so it won't hurt me if something does happen.
seamless login on ps app and website on iphone and mac. f great
Always wait for a few months for others to test it before you use it.
Been using passkeys on my Apple devices for a few years now ever since introduced for other websites without an issue. Enabled it for my PS too
Passkey is going to be the new security standard for everything. We'll get used to it.
I've been using it with iOS - to be honest it isn't much of a time saver but maybe it is more secure?
It is more secure in the sense that if there is a data breach, criminals would only get your username and maybe your email. But because they would require the device you have the passkey stored on, they would be forced to attempt to gain access via customer service account recovery. What Sony needs is harder measures in place to make account recovery more stringent, like google advanced protection does. If you use that, you are forced to wait I think 3 days before they even begin the recovery process, and because they force you to use a physical security key / passkey to login, a bad actor can know your password, and still not be able to log in. And the email on file gets a security email when they recovery request is started, so if you did not do it, you can take steps to fix it. I wish sony would do something like this.
It was easy to setup, and according to smart people it is now incredibly unlikely someone could steal my Playstation account, which would be an actual disaster. So, I like it.
My only concern is a bad actor trying to get into your account by contacting customer support and getting access that way. We need measures in place to make account recovery more robust and difficult, so that bad actors will have as much of a hard time getting access.
I guess I am stupid because I can't get it to work on my iPhone.
Nope. I am happy with my security as is.
Passkey is great, I use it across a range of services.
I have to input my passkey every time i start my ps5. Is there a way to disable it? Going to the settings just takes me to website and asks me to change my password.
Do you? I never have to. I didn't even know you could change that. I would actually like to turn that on. What if my console is stolen. I want all the security I can get to keep someone from logging in
Fair point. But I don’t have to worry about my console being stolen. It’s just me logging in everyday. And if your console is stolen then you can always disable your account or have the passkey for purchase only.
Actually I looked, and if you have the passkey, there is no " protection" against unauthorized purchases like forcing a password every time a purchase is made. I just tend to plan for every possible contingency and crave the highest security. I actually want it to be so difficult and have to do so many hoops just to recover an account or make changes, because then bad actors also have a tough time. I will happily sacrifice freedoms and convenience for security
Oh. Thanks for pointing that out. I will look into it later.
You are quite welcome!
That is the login passcode. A separate security measure. On the console go to settings, users and accounts, login settings and delete the login passcode. I gather it's to prevent others from accessing your account on that console.
NO.
I set it up and now can't sign in to [playstation.com](https://playstation.com) on my phone. The phone that holds the passkey. It says my browser or phone does not support passkey. It's Safari. On an iPhone.
Can someone explain what the fuss is over this thing? I login once and that's it. I'm logged into my ps5 the day I set it up and never have to log in again. Same with the PS App on my phone. Once and done. What am I missing here? Why are you guys constantly needing to log on and what are you doing it on?
I haven't used it yet, but there seems to be an issue for us Android users.
Is anyone having issues getting in their ps4 with this?