Okta Passwordless Authentication

Goodbye passwords. Delight and secure users with passwordless authentication.
Download whitepaper
Try Okta

Current authentication methods deliver poor security, sub-optimal user experience, and increase support costs.

61%

of all data breaches involved the use of stolen credentials - compromised usernames and passwords

— 2021 Data Breach Investigations Report from Verizon

12.6 mins/week

Average time spent entering or resetting passwords per week per employee

— Ponemon Authentication Report 2019

Redefine logins with passwordless authentication

Security

Reduce or even eliminate a majority of password-based attacks, including phishing, credential stuffing, etc.

User experience

Cut authentication time and deliver a seamless experience of up to 50%*.

*Google I/O 2018 Survey

Total cost of ownership

Drive efficiency and create happy support and IT organizations by reducing password management operational costs.

Watch the demo
The conversation with the group security people has changed recently. It used to be about passwordless being insecure and that they needed passwords, to the realization that passwords are not secure.

Mark Cameron

UK, enterprise IT architect

Your passwordless authentication building blocks

Passwordless authentication options for every use-case

Customer Identity

Provide seamless auth experiences and reduce security risks for your customers while reducing your organization's support costs.

Workforce Identity

Improve employee productivity while reducing risks of data breaches and IT help desk costs.

Okta Fastpass

Okta FastPass delivers a seamless passwordless experience. With Okta FastPass, employees can simply register their device to Universal Directory via the Okta Verify App. Registering a device establishes a unique binding between it and the user in the Okta Identity Cloud. The result is a completely passwordless login experience that works on any device across browsers, desktop applications, and native mobile applications.

Email magic links

Email magic links

Simply click on a link embedded in a verified email to validate the request, and continue the login process.

Ideal for passwordless authentication into applications that require infrequent authentication, access from any device, or when you need to. Bootstrap users into higher assurance passwordless authentication or login without passwords from any device. This feature is available in Okta Identity Engine.

Email magic links are easy-to-use, cost-effective, and reduce your time-to-market.

Applicable for Workforce and Customer Identity

Factor sequencing

Factor sequencing allows you to authenticate using one or more high assurance factors. Dynamically alter the authentication experience by using high assurance factors like Okta Verify with risk-based-auth to remove the need for a second factor.

Factor sequencing offers a high level of assurance.

Explore factor sequencing

Applicable for Workforce and Customer Identity

Passwordless Authentication - factor sequencing
Webauthn

WebAuthn

WebAuthn is a standards-driven approach to passwordless authentication. Use authenticators like YubiKey or TouchID to authenticate into your applications. Best of all, there is no back-and-forth credential sharing needed.

Use WebAuthn to stop all password-based identity attacks and deliver a cost-effective, seamless authentication experience.

Explore WebAuthn

Applicable for Workforce and Customer Identity

PIV/Smart-card (x509 based)

Use PIV/Smart-cards (or any x509 supported cards) to authenticate in Okta or any apps integrated with Okta without passwords.

PIV/Smart-card based authentication is ideal for customers in regulated industries (healthcare, banking) or governmental organizations.

Explore PIV/Smart-cards

Applicable for Workforce Identity

PIV Card
Passwordless with Device Trust

Passwordless with Device Trust

Okta’s Device Trust integrates with leading endpoint management systems to deliver a passwordless login experience on desktop and mobile. When you utilize a unified endpoint management (UEM) vendor that can integrate it’s own identity capabilities into Okta, you are able to both enforce device security and deliver a seamless login experience for users.

Explore Device Trust

Applicable for Workforce Identity

Desktop single sign-on

Use passwordless authentication to login to Okta on machines joined on your Active Directory domain (Windows and macOS). Okta offers agent-based (using Okta IWA) or agentless (using cloud based Kerberos) approaches.

Log in to machines with your Active Directory credentials → open an Okta managed app on browser or modern auth desktop apps → login with no username or password prompt.

Explore desktop SSO: IWA and Agentless

Applicable for Workforce Identity

Single sign-on desktop

Okta partners with leading vendors to fit every passwordless use-case

Passwordless is a team sport. Solve additional passwordless use-cases
with Okta’s partners eco-system.

View Okta's partners

HYPR Logo
Veridium - Okta Integration Network
Secret Double Octopus - OIN
Trusona - Okta Integration Network
Yubico - Okta Integration Network
VMWare - Okta Integration Network

Kick-start your passwordless journey with Okta

Try Okta