Tech

Master 2-Factor Authentication and Passkeys on macOS, & iOS

Mar 19th 2026

AI-generated, human-reviewed.

Managing secure logins doesn't have to be complicated. This episode of Hands-On Apple dives deep into how the built-in Passwords app on macOS and iOS can simplify account security, highlighting practical ways to use features like two-factor authentication (2FA), passkeys, and Apple’s automated security recommendations. Here’s how you can make your accounts safer—no third-party software required.

Why Focus on the Passwords App Now?

Apple continues to upgrade its integrated security tools, making the Passwords app a more robust option for everyday users. As cyber threats grow and two-factor authentication becomes a standard best practice, understanding how to securely manage passwords inside the Apple ecosystem is more important than ever.

Hands-On Apple host Mikah Sargent shares step-by-step strategies to protect accounts, replace weak passwords, and streamline logins essential for anyone looking to improve digital safety without adding extra subscriptions or complex apps.

Core Features for Stronger Security

The Passwords app goes beyond just saving passwords. It offers:

  • Two-Factor Authentication Codes (TOTP/2FA): Generates and autofills time-based security codes for easy logins.
  • Passkeys: Lets you log in without a password using Face ID, Touch ID, or device passcode for a new layer of account verification.
  • Security Recommendations: Flags weak, reused, or leaked passwords and guides you to fix them.
  • iCloud Sync: Ensures passwords and passkeys are available across all Apple devices.

These features are all built-in and free with your device, no need for add-ons.

Securing Your Accounts Step-by-Step

1. Set Up Two-Factor Authentication in the Passwords App

  • Choose any site that supports 2FA (e.g., Amazon, Google).
  • Use the authenticator app method rather than SMS for better security.
  • On macOS, right-click the QR code during 2FA setup and select Set up verification code—the Passwords app handles the rest.
  • Apple’s autofill supplies the current 6-digit code automatically at login, saving time and reducing the risk of lockout.

2. Move Existing 2FA Codes Safely

  • Import all your 2FA codes step-by-step if you’re switching from a different authenticator.
  • Make sure all codes are working before deleting them from other apps. This avoids losing access to important accounts.

3. Create and Use Passkeys

  • On supported sites (Amazon, Google, etc.), add a passkey instead of a password.
  • With your device and the website, a secure key pair is created—no passwords to remember.
  • Authenticate with Face ID, Touch ID, or passcode for fast, phishing-resistant access.

4. Monitor and Update Security Alerts

  • The Passwords app flags compromised, weak, or reused passwords.
  • Prioritize important accounts like banks, email, and investment platforms.
  • Use one-click “Change Password” options to update credentials quickly, with strong password suggestions built in.

(Pass)Key Takeaways

  • 2FA in Apple’s Passwords App is straightforward, so just scan a QR code and autofill does the work, both on macOS and iOS.
  • Passkeys represent the future of effortless, secure logins. They’re harder to steal and easier to use than passwords.
  • Security Recommendations are your new monthly checklist: tackle the most critical alerts (like compromised or financial account passwords) first for the biggest safety improvement.
  • Regular, small updates are less overwhelming! Fix a few flagged passwords at a time and schedule a quick review each month.

You can dramatically improve account security today using only Apple’s built-in tools. No subscriptions, no need to learn new complex software—just a systematic approach, directly in the Passwords app. For anyone unsure about third-party password managers or looking to fully leverage Apple’s privacy and security investments, these steps deliver maximum protection with minimal hassle.

Apple’s Passwords app has evolved into a capable, user-friendly solution for managing all your logins, two-factor codes, and now passkeys. Mikah Sargent recommends making it your first stop for upgrading account security, before considering third-party alternatives. Start by adding 2FA and passkeys to your most important accounts, and routinely follow Apple’s security alerts. A few minutes of setup can protect you from the majority of common cyber threats.

Subscribe for more actionable Apple tips and security insights:
https://twit.tv/shows/hands-on-apple/episodes/223

All Tech posts