Tomorrow, June 4, Microsoft is officially retiring the master password feature for its Edge browser.
The move marks the end of password-based authentication for the browser’s built-in manager and a broader shift toward passwordless authentication across the Microsoft ecosystem. Users will now be required to use device-based authentication methods, such as Windows Hello (PIN, fingerprint, or facial recognition) to access their saved passwords in Edge. It’s the latest move in Microsoft’s offensive against passwords, pushing the world toward a passwordless future of passkeys and biometrics. If you haven’t set up Windows Hello yet, you should act now.
Ignas Valancius, VP of engineering at the cybersecurity company NordPass, comments:
“By disabling the master password in Edge, Microsoft isn’t just changing a setting — they’re forcing a change in habit. While biometrics and passkeys are considered more convenient and secure than passwords, this ‘cold turkey’ transition might become unpleasant for users who prefer to hold on to their passwords.
“And there absolutely are people who prefer passwords, because we’re creatures of habit. We can all relate to that feeling of being in a comfort zone and not wanting to change anything. Users who want to stick with a master password can easily find alternatives in third-party password managers. But personally I think a push toward passwordless authentication is a positive development.
“When people manage too many passwords, they tend to reuse them or create simple variations, such as changing a single letter or number. This practice creates significant vulnerabilities — if one of these accounts is breached, all other accounts sharing the same or a similar password become compromised.
“Microsoft began phasing out password-based authentication last year, starting with its Authenticator app. Passwords and autofill features were moved to the password manager built into the Microsoft Edge browser (similar to how the Google Chrome manager works).
“At the end of February 2026, the company removed support for master passwords in the browser. While it was no longer possible to create a new master password, existing ones continued to function — until now. After June 4, 2026, legacy master passwords will stop working entirely, and users will be able to access the password manager via device authentication only.
“Such steps taken by Big Tech companies have likely helped reduce the number of passwords people juggle. Our recent research shows that the average number of passwords an individual manages dropped from 168 in 2024 to 120 in 2026, with work-related passwords seeing a similar decrease from 87 to 67.
“Users are increasingly opting for the convenience of logging in through single sign-on (SSO) with their primary account, such as Google, Apple, or Facebook. The growing adoption and promotion of password alternatives like passkeys, Apple Face IDs, Windows Hello, and WebAuthn are contributing to this long-awaited decline. Our own offering of passkeys may also have played a role in this trend.”
Passwords need to die. But whether it’s passwordless authentication or PassKeys, it time for the password to die and I am all here for it.
Related
This entry was posted on June 3, 2026 at 8:15 am and is filed under Commentary with tags Nordpass. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Microsoft pulls the plug on passwords TOMORROW
Tomorrow, June 4, Microsoft is officially retiring the master password feature for its Edge browser.
The move marks the end of password-based authentication for the browser’s built-in manager and a broader shift toward passwordless authentication across the Microsoft ecosystem. Users will now be required to use device-based authentication methods, such as Windows Hello (PIN, fingerprint, or facial recognition) to access their saved passwords in Edge. It’s the latest move in Microsoft’s offensive against passwords, pushing the world toward a passwordless future of passkeys and biometrics. If you haven’t set up Windows Hello yet, you should act now.
Ignas Valancius, VP of engineering at the cybersecurity company NordPass, comments:
“By disabling the master password in Edge, Microsoft isn’t just changing a setting — they’re forcing a change in habit. While biometrics and passkeys are considered more convenient and secure than passwords, this ‘cold turkey’ transition might become unpleasant for users who prefer to hold on to their passwords.
“And there absolutely are people who prefer passwords, because we’re creatures of habit. We can all relate to that feeling of being in a comfort zone and not wanting to change anything. Users who want to stick with a master password can easily find alternatives in third-party password managers. But personally I think a push toward passwordless authentication is a positive development.
“When people manage too many passwords, they tend to reuse them or create simple variations, such as changing a single letter or number. This practice creates significant vulnerabilities — if one of these accounts is breached, all other accounts sharing the same or a similar password become compromised.
“Microsoft began phasing out password-based authentication last year, starting with its Authenticator app. Passwords and autofill features were moved to the password manager built into the Microsoft Edge browser (similar to how the Google Chrome manager works).
“At the end of February 2026, the company removed support for master passwords in the browser. While it was no longer possible to create a new master password, existing ones continued to function — until now. After June 4, 2026, legacy master passwords will stop working entirely, and users will be able to access the password manager via device authentication only.
“Such steps taken by Big Tech companies have likely helped reduce the number of passwords people juggle. Our recent research shows that the average number of passwords an individual manages dropped from 168 in 2024 to 120 in 2026, with work-related passwords seeing a similar decrease from 87 to 67.
“Users are increasingly opting for the convenience of logging in through single sign-on (SSO) with their primary account, such as Google, Apple, or Facebook. The growing adoption and promotion of password alternatives like passkeys, Apple Face IDs, Windows Hello, and WebAuthn are contributing to this long-awaited decline. Our own offering of passkeys may also have played a role in this trend.”
Passwords need to die. But whether it’s passwordless authentication or PassKeys, it time for the password to die and I am all here for it.
Share this:
Like this:
Related
This entry was posted on June 3, 2026 at 8:15 am and is filed under Commentary with tags Nordpass. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.