Skip to main content

Authentik Passwordless Login

Passwordless Login in Authentik allows us to login using passkey instead of password. This option provides higher security and faster authentication.

At the moment Passwordless Authentication only supposts WebAuth devicees (tokens, yubkey, 1password passkey).

Authentik Documentation on Passwordless Login

Steps to Set Up Passwordless Login Flow
  1. Login to Authentik as Administrator
  2. Click on Flows and Stages and click on Flows
  3. Click Create
    1. Keep the name similar across the process for easier setup
    2. For Designation choose Authentication
  4. Click on new created Flow
  5. Click on Stage Bindings and choose Create & Bind Stage
    1. Choose Authenticator Validation Stage
    2. Click Next and add name similar to previous one
    3. Choose WebAuthn Authentication
    4. For not configured action choose Force the user to configure an authenticator
    5. For configuration stage find default-autenticator-webauth-setup and push over to the right
    6. Click Next and Finish
  6. Click Bind existing Stage
    1. For Stage select default-authentication-login (or personal one)
    2. If you add Order number for previous part, add a higher number
    3. Click Create
  7. Go back to Flows and select your Welcome Page or defaulth-authentication-flow
  8. Go to Stage Bindings and for Identification Stage click Edit Stage
    1. Go to flow Settings
    2. Select passwordless flow

You should be ready to go

Back to top