Share via

How can I permanently disable Passkey prompts?

Rick Twiss 0 Reputation points
2026-02-27T02:36:08.3566667+00:00

I'm being ask for a passkey to sign in to some websites. I don't remember making one. I used my pin. when I tried to make a passkey I get an error that says I'm already registered

Microsoft Security | Microsoft Identity Manager
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Q&A Assist
    2026-02-27T02:36:19.3666667+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    Passkey prompts cannot be globally or permanently disabled from Windows or Microsoft account settings. Websites and apps that support passkeys will continue to offer them as a sign-in option. However, existing passkeys that cause confusion or errors can be removed, and sign-in can be done with other methods instead.

    To address the “already registered” error and reduce unwanted prompts, follow these steps depending on where the passkey is stored:

    1. Check and remove passkeys from the Microsoft account or Entra ID
      • For a personal Microsoft account, go to the Advanced Security Options page and review the list under Ways to prove who you are. Remove any passkeys that no longer apply.
      • For a work or school account, go to Security info at https://mysignins.microsoft.com/security-info, and under the list of methods, delete any Passkey or Passkey in Microsoft Authenticator entries that are no longer needed.
    2. Remove passkeys from Microsoft Authenticator (if used)
      • On iOS: In Authenticator, tap the account name, then Settings > Delete passkey. Then also delete the same passkey from Security info as above.
      • On Android: If a passkey was partially created and you see an error that it already exists when trying to register, delete the locally stored passkey in Authenticator and retry registration only if a passkey is actually desired.
    3. Handle “passkey already exists / can no longer be used” errors
      • If a site or Microsoft sign-in shows messages like “This passkey can no longer be used” or “We couldn’t use your device to verify your identity,” it usually means the passkey was deleted or is invalid on that device.
      • Fix by:
        1. Deleting any obsolete passkeys from the authenticator app or device.
        2. Deleting obsolete passkeys from the account’s security pages (Advanced Security Options or Security info).
        3. If needed, setting up a new passkey cleanly.
    4. Sign in using non-passkey methods
      • On Microsoft sign-in pages, always choose Sign-in options or Other ways to sign in, then select password, SMS, email code, or another method instead of Face, Fingerprint, PIN, or Security Key.
      • For work/school accounts, the same Sign-in options menu lets the user avoid passkeys and use other configured methods.

    While websites may still offer passkeys, removing existing passkeys from the account and from Authenticator/devices will stop those specific credentials from being used and clear the “already registered” and “no longer valid” errors. Sign-in can then be done consistently with PIN, password, or other verification methods instead.

    References:

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.