NatronTech Logo
SecurityTeleportAuthentication

Passwordless Login

Availability
Basic tierStandard tierExtended tier
Stage
Experimental
Requires
Managed KubernetesManaged DatabasesObject Storage

Passwordless login allows users to authenticate without entering a password, but instead using specific hardware such as a YubiKey or a biometric device. This method enhances security by relying on physical authentication factors.

Prerequisites

  • Windows or Mac device that supports WebAuthn.

For passwordless login, you can use Windows Hello or Touch ID on Mac. It is also possible to use external security keys such as YubiKey that support WebAuthn.

Enabling Passwordless Login

Access the Teleport Web UI

Open the Teleport Web UI in your web browser.

Click on your user avatar or name in the top-right corner and select Account Settings from the dropdown menu.

Teleport Account Settings

Next, got to the Security tab and locate the Passwordless sign-in using Passkeys section.

Add a New Passkey

Click on the Add a Passkey button to start the registration process.

Add Teleport Passkey

Follow the prompts to register your device or security key. This may involve using biometric authentication (like fingerprint or facial recognition) or inserting and touching your security key.

Sign in Using Passwordless Login

Web UI

For login with passwordless authentication, go to the Teleport Web UI login page. Chose Other Sign-in Options and select Passwordless Login.

Teleport Passwordless Login

TSH Client

To log in using the tsh client with passwordless authentication, use the --auth=passwordless flag:

tsh login --auth=passwordless --proxy=<proxy-address>

First Login

Previous Page

Client Installation

Next Page

On this page

PrerequisitesEnabling Passwordless LoginAccess the Teleport Web UINavigate to Account SettingsAdd a New PasskeySign in Using Passwordless LoginWeb UITSH Client