There are two types of passkeys which can be used to complete multi-factor authentication at Middlebury.
This article explains how to register a phishing-resistant physical security passkey (officially known as a FIDO2 Token) so you can log in to your Middlebury account securely without having to enter your username and password, or use a cell phone authenticator app or text message. These devices are useful for individuals who don't have a cell phone or want additional security for their Middlebury account. Compatibility resources are included that list which browsers and devices are supported by the various operating systems.
Phishing resistant MFA ties the authentication request from the computer to the hardware passkey, which prevents the authentication from being intercepted and replayed by a bad actor.
One example of a security key is a YubiKey.
How to Register a Security Key
-
Visit the Microsoft security info page for your account (go/mfasetup/).
-
On the Security Info page, click + Add sign-in method.

-
When asked "Which method would you like to add?", choose Passkey.
-
Sign in faster with your face, fingerprint, or PIN click Next.
-
Set up Windows hello to save your passkey — click the 'try using another device' link:

-
Choose Security Key.
Insert the Key into the USB C port and create a PIN then click OK
- Touch the security key, name the passkey and click NEXT
- Passkey Created, click DONE
For first time registration, please note the following device compatibility requirements:
*Note that you likely run into issues using a private/incognito browser to set up a key

FIDO2 compatibility with Operating Systems & Browsers:
