Microsoft will make passkeys the default authentication method for its Entra ID enterprise identity service starting September 2026, automatically enabling passkeys for users currently relying on phone-based SMS and voice authentication, which Microsoft plans to retire by February 2027. Organizations are advised to transition to phishing-resistant methods before the retirement deadline to avoid sign-in disruptions, as Microsoft aims to reduce reliance on phishable authentication and improve account security against increasing credential theft and phishing attacks.
