Quick links:

• General information about passkeys
  • What are passkeys?
  • Why should I use passkeys?
  • Am I eligible? 
  • Is the email titled “Action Required: Set up a passkey on your Gemini account” legitimate?
• Setting up passkeys for your Gemini account
  • How do I create a passkey on mobile?
  • How do I create a passkey on desktop?
  • What happens if I fail to properly establish a passkey on my exchange account?
  • Can I have multiple passkeys?
• Using passkeys
  • How do I perform 2FA using passkeys?
  • I created a passkey on mobile. Do I need to scan a QR code each time I try to login on desktop? 
  • Why do I see a QR code when signing in with a passkey on mobile?
• Other authentication methods
  • I use two hardware keys as my 2FA method. Do I still need to set up a passkey?
  • What if I have a security key (hardware key) and a passkey?
  • I use Authy as my two-factor authentication (2FA). Do I still need to set up a passkey?

 

General information about passkeys

What are passkeys?

Passkeys are a new, easy, and secure way to sign in without using a password. Instead of typing your email and password, you just use your phone to log in across devices by scanning the QR code and using Face/Touch ID or device PIN.

Why should I use passkeys?

Passkeys offer enhanced security over SMS or Authy. Passkeys prevent phishing and SIM-swap attacks, ensuring  only authorized users can access accounts through biometrics or PIN verification.

Am I eligible? 

Passkeys on Gemini are available across web and mobile platforms including iOS and Android devices.  All Gemini operational countries are eligible for Passkey usage at time of launch. 

Is the email titled “Action Required: Set up a passkey on your Gemini account” legitimate?

Yes, we can confirm this is a legitimate email from the Gemini team. This is an important security update that will enhance the security of our customers’ accounts.

For more information on how to recognize legitimate communications regarding your Gemini account, visit this page.

 

Setting up passkeys for your Gemini account

How do I create a passkey on mobile?

If using an IOS/Android device you will need to either;

• have iCloud/Google Password Manager password syncing turned on.
• have another password manager installed like bitwarden, 1Password etc.

Otherwise creating a passkey on the mobile app or web via a scan of the QR code will not work as you will not be able to save passkeys that will work across all your devices.

To create a Passkey via the mobile app;

1. First ensure that you have installed the latest version of the Gemini app on your mobile device.
2. Secondly, ensure you have updated your mobile device to IOS version 17 or greater if using an Apple device or Android version 10 or greater if using an Android device.
3. Then, log into your account on the app and follow the steps below:

• • • Visit your account settings by clicking the profile icon on the top right.
    • Select "Security Settings"
    • Click on "Add a Passkey"
    • Follow the prompts to create the passkey on your mobile app using Face/Touch ID or device PIN and ensure its saved to your cloud passkey manager (iCloud, Google Password Manager, Bitwarden, 1Password, etc.).
    • You can scan QR code prompted on the web with your mobile device and choose the cloud provider where you stored your passkey to sign in successfully using the cross-device passkey you just created.

How do I create a passkey on desktop?

If you use Gemini on the web browser, please follow the steps below:

• Head to the Security page here
• Click on "Create Passkey"
• Follow the prompts to create the passkey on your screen

You can either create your passkey on a mobile device (preferred), or

directly on your desktop device, without need for a smartphone. This can be done in a few different ways, including:

• Preferred) Using a password manager (e.g. iCloud, Google Password Manager, Bitwarden, 1Password). Ensure that if you are using non-native passkey cloud providers such as Bitwarden and 1Password then those password managers are also installed on the mobile device for mobile app access. Additionally, ensure iCloud or Google Password Manager is turned on in your mobile device if using native cloud providers on mobile.
• Using a Hardware Security Key compatible with FIDO2: Note that this key might not be able to be used for logging in to your mobile device.
• Using built-in security features of the device (eg. Windows Hello). Note that this Windows Hello or other device specific passkeys from your computer might not be able to be used for logging in to your mobile device.

 

What happens if I fail to properly establish a passkey setup on my exchange account?

The creation of a passkey will be required  but you will have the option to set up an authenticator app of your choice after failing to register your passkey twice. You can use applications such as Google Authenticator, Duo Mobile, Microsoft Authenticator or others for authenticator apps. Funds will not be lost and  we are here to help to establish continued access.

 

Can I have multiple passkeys?

Yes, you can setup multiple passkeys from the same device or from different devices. We encourage you to set up passkeys that are cross-device and/or synced to cloud password managers (iCloud, Google Password Manager, Bitwarden, 1Password, etc.) so that only one passkey allows you to sign in across all your devices.

 

Using passkeys

How do I perform 2FA using passkeys?

Once you opt into passkeys, they become your default 2FA method across both web and mobile, for all authentication, including sign-ins and withdrawals. Passkeys created using your mobile phone will require only biometric authentication, such as fingerprint or Face/Touch ID, to complete 2FA across any device. If you store passkeys on a specific  device, other devices will prompt you to scan a QR code to connect to your primary device which will not work.

For example, if you set up passkeys using your phone and then attempt to log in on your computer, a QR code will appear on the computer screen. Open the camera app on your phone to scan the QR code and follow the on-screen instructions to complete the authentication process. But if you store your passkey on Chrome browser or Windows Hello within your laptop, then you will be not be able to use that passkey on other devices. We encourage you to log back into that device and setup a passkey using your mobile device or a cloud provider to ensure continued access on other devices you use to access Gemini.

I created a passkey on mobile. Do I need to scan a QR code each time I try to login on desktop? 

Yes, if you created a passkey only on mobile, you will need to scan the QR code from your mobile device each time you log in via desktop browser. Alternatively, you can set up another passkey on your desktop device.

Why do I see a QR code when signing in with a passkey on mobile?

If you see a QR code on your mobile device when signing in with a passkey, it means that device doesn't have a stored passkey for Gemini. This typically occurs if your passkey was created on another device, such as a web browser.

To resolve this: 

• Use your passkey to access your account via web browser that has your passkey stored. Ensure you are using an authorized device or authorize your current device.
• Temporarily turn on the Authenticator App2FA option in your security settings.
• Open the Gemini app on your mobile device, use authenticator app as your 2FA through “Verify Another Way” option and then navigate to Security Settings to create a new passkey on mobile. This passkey can now be used across web and mobile. 
• After setting up the passkey on your mobile app, disable authenticator app  to keep your account more secure with passkeys

 

Other authentication methods

I use two hardware keys as my 2FA method. Do I still need to set up a passkey?

No, at this time, you do not need to set up a passkey if you use two hardware keys as your chosen form of 2FA. However, if you use one hardware key, you will need to set up a passkey as your second method of 2FA authentication.

What if I have a security key (hardware key) and a passkey?

Gemini recommends using both security keys and passkeys for optimal security, as they are the most secure authentication methods available. Passkeys are software-based and tied to your cloud password managers or device, while security keys are physical objects that you must possess. Gemini supports having both security keys and passkeys associated with your account. When passkeys are enabled, they will be used as the default method for authentication.

I use Authy as my two-factor authentication (2FA). Do I still need to set up a passkey?

Gemini will be discontinuing customers’ current configuration of Authy 2FA over the coming weeks. After May 24, 2025, customers may choose to set up Authy again as their new authenticator app. They may also choose another authenticator app such as Google Authenticator or Duo Mobile. However, we strongly recommend that customers set up a passkey as it is a much more secure form of two-factor authentication.