Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Apple ID Security Keys Feature Now Supports iCloud for Windows

MacRumors

MacRumors

macrumors bot
Original poster
Apr 12, 2001
68,621
39,492


If you have physical security keys set up for your Apple ID account, you can now sign in to iCloud on Windows, after updating the app to version 15 or later. Apple confirmed this change in a support document updated today.

Apple-advanced-security-Security-Keys_screen-Feature-crop.jpg

Previously, signing in to iCloud for Windows was not an option whatsoever after turning on the Apple ID security keys feature.

Apple ID security keys support was introduced early last year with iOS 16.3, iPadOS 16.3, and macOS 13.2. When the optional setting is turned on, signing in to an Apple ID requires entering the account's password and then using a FIDO-certified security key to complete two-factor authentication, instead of a traditional six-digit verification code from another Apple device. These security keys typically look similar to a USB thumb drive.

Apple says the feature is "designed for people who want extra protection from targeted attacks, such as phishing or social engineering scams." You should be extra careful if you turn on the feature, as you could be locked out of your Apple ID account permanently if you lose all of your trusted Apple devices and security keys.

Article Link: Apple ID Security Keys Feature Now Supports iCloud for Windows
 
Article Link
https://www.macrumors.com/2024/02/06/apple-id-security-keys-now-supports-windows/
  • Like
Reactions: Jhonjhon236, zapmymac and Justin Cymbal
I noticed last night around 11 PM to Midnight PST Apple ID wasn't working, then it was. Via Safari web browser, not an app those all worked. I checked Apple system status it was all green. Possibly Apple was updating their Apple ID security?
 
  • Like
Reactions: zapmymac and Justin Cymbal
What I really want is to be able to register my own Passkeys to unlock my Apple ID.

Apple makes it easy to use your iPhone as a Passkey for other sites, but they don't allow me to use Passkeys to secure my Apple ID itself.

Really irritating.
 
  • Like
Reactions: gusmula and Justin Cymbal
I’m glad that Apple is expanding this feature to Windows users as well. These extra security features are definitely great for users

I logged into my Google account a few months ago and added a bunch of new ways to secure my Google account including Google Authenticator - something that I’ve been meaning to do for a while

There must’ve been 10 different options of securing your Google account that Google makes available so I hope that Apple does something similar because the more ways that a user has to get into their account, the less likely that they will get locked out of their own account. I’m trying to rely less on SMS authentication and more on these alternative methods to enable higher security

On my Google account I removed my main personal phone number and I now only use 2 phone numbers (that I don’t give out to people) for the SMS authentication - I think that’s a better alternative than using your main phone number that everyone knows
 
  • Like
Reactions: gusmula
It’s nice that Google offers many different ways to authenticate and 2FA, but be mindful the more options you switch on, the more “attack surface area” you have on that account.

Best thing is to usually have only your most secure method switched on, such as PassKeys or hardware keys for 2FA. That way an attacker must possess a key to gain access.
 
Justin Cymbal said:
I’m glad that Apple is expanding this feature to Windows users as well. These extra security features are definitely great for users

I logged into my Google account a few months ago and added a bunch of new ways to secure my Google account including Google Authenticator - something that I’ve been meaning to do for a while

There must’ve been 10 different options of securing your Google account that Google makes available so I hope that Apple does something similar because the more ways that a user has to get into their account, the less likely that they will get locked out of their own account. I’m trying to rely less on SMS authentication and more on these alternative methods to enable higher security

On my Google account I removed my main personal phone number and I now only use 2 phone numbers (that I don’t give out to people) for the SMS authentication - I think that’s a better alternative than using your main phone number that everyone knows
Click to expand...
It’s nice that Google offers many different ways to authenticate and 2FA, but be mindful the more options you switch on, the more “attack surface area” you have on that account.

Best thing is to usually have only your most secure method switched on, such as PassKeys or hardware keys for 2FA. That way an attacker must possess a key to gain access.
 
  • Like
Reactions: Justin Cymbal
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back