Skip to content
Rack Gateway

WebAuthn

WebAuthn (passkeys and security keys) provides phishing-resistant MFA.

Setup in the Web UI

Section titled “Setup in the Web UI”
  1. Open Account Security
  2. Click Enable MFA (or Add Method if MFA is already enabled)
  3. Choose Passkey or security key
  4. Follow your browser prompt to complete enrollment

Using WebAuthn

Section titled “Using WebAuthn”

Web UI

Section titled “Web UI”

When prompted for MFA, select the security key option and complete the browser prompt.

CLI

Section titled “CLI”

The CLI can use WebAuthn methods marked CLI Compatible:

  1. In Account Security, edit your WebAuthn method
  2. Enable CLI Compatible (recommended for hardware keys)
  3. Use --mfa-method webauthn when prompted
Terminal window
rack-gateway deploy -a myapp --mfa-method webauthn

Managing Methods

Section titled “Managing Methods”

In Account Security → Registered MFA Methods, you can:

  • Edit the label
  • Toggle CLI Compatible (WebAuthn only)
  • Remove a method