For a faster login experience, you can add extra authentication methods like security keys and passkeys. These work alongside your required two-factor authentication (2FA) app and streamline login access.
Choosing an authentication method
Depending on your device and browser setup, you can use one or more of the following:
Touch ID (macOS only)
- Built into recent MacBooks and Magic Keyboards
- Requires separate setup per browser
- Only works on the device it’s registered from
Windows Hello
- Uses a PIN, facial recognition, or fingerprint
- Works only on the original setup device but across compatible browsers
Passkeys
Passkeys are synced security credentials stored in cloud services like iCloud Keychain or Google Password Manager. They allow you to log in without entering a password or a TOTP code.
- Enrol a passkey via Face ID, Touch ID, Windows Hello, YubiKey, or other methods
- Works across devices and browsers that support passkeys
- Auto-detects and nicknames your key during registration for a seamless experience
- Acts as both your login and 2FA method
USB security key
- Physical key (e.g., YubiKey or Titan) that you plug into your computer
- Works on all major OSes and devices
- Must be purchased separately
Mobile device
- Uses Bluetooth to send push notifications
- Confirms identity with Face ID, fingerprint, PIN, or password
- Devices that unlock via swipe are not supported
Browser compatibility
Setting up a security key or passkey additional authentication methods
- Go to your Security settings
- Under Two-factor authentication, click Add security key
- Choose your method and follow the prompts
- Give the authentication method a nickname.
Logging in with a security key
- Enter your email address and password on mercury.com
- On the 2FA screen, click Use security key instead
- If you check Trust this device for 30 days, you can skip 2FA for future logins on that browser
- Follow the prompts to authenticate using your selected method
FAQs
Do I still need a 2FA app if I use a security key?
Yes. Because some form of 2FA is always required, you’ll need to keep your 2FA app handy in case you’re unable to use your security key.
I’ve lost access to my security key. What should I do?
No problem, life happens. You can still log in using your authenticator app or a single-use backup code. Or, if all else fails, contact our Support Team. Once you’ve logged in, make sure to remove that lost security key from your account by going to Settings > Security.
My security key isn’t working. What should I do?
If you’re using fingerprint or facial recognition, try again, as it may have just gotten a weird read the first time. If you’re using a mobile device as your security key, ensure your device is near your computer and that both devices are connected to the internet and have Bluetooth enabled.
If you’re still having issues, use a 2FA app or backup code to log in instead. Then, contact support with as much information as possible (browser name/version, type of security key, screenshots) and we can help resolve the issue.