Using email or text for SMS is a very poor 2FA solution. Please replace that method with support for authenticator apps, passkeys, or hardware keys.
Hi @BeagleScoutNH,
This is an important idea. I don't yet have a schedule for this improvement, but I will update this thread when I do. Thanks for contributing.
Apparently connections to Target credit card stop working when one enables passkeys.
I wish this idea would get some traction. HealthEquity require passkeys and I'm sure they won't be the last.
Has any progress made here? This is very critical now
Another request for this. HealthEquity and Quicken (Mac, at least) continue not to play well with each other. I cannot track anything any longer in our HealthEquity accounts because it will not automatically validate.
Hello All,
This idea is getting close to reaching the number of votes needed to be reviewed by our Development Team for consideration.
If this is a feature you’d like to see in Quicken, now is a great time to add your vote and leave a comment explaining how it would benefit you. User feedback and engagement help our teams better understand demand and real-world use cases.
For more information on how to vote or submit your own ideas for future product improvements, please see here.
Thank you!
You say you take our security seriously. Most serious companies in 2026 don't rely on passwords for a reason. I can't log into my 401k through quicken anymore and that actually is a good thing from a security standpoint, but a bad thing for how useful this product is to me. Please don't wait for "more upvotes". Take responsibility, make an executive decision and get this done!
Yes, need this ASAP. More and more institutions requiring passkey. One step update is becoming useless if we can't get PassKey ability
My exact issue on Windows as well. Health Equity worked well prior to their passkey requirement.
Adding to the HealthEquity passkey issue. Quicken Connect is eroding without passkey support.
I agree with slappy92 above that this capability is overdue for a tool like Quicken. Most browsers have had passkey capability for a while now and technical standards for the creation, use, and management is well-established. (e.g. FIDO2). This should be a very natural integration into (or evolution of) the Quicken Vault.
When you think about it, Quicken Vault is kind of a "last generation" attempt to accomplish the same goals. It would be surprising (even disappointing) if the folks who maintain that code where not already looking at passkeys. Aside from the benefits to the user community being discussed here, it could potentially enable Quicken to offer more robust security. For example, app-specific passkeys. The examples and the (open source) code for it are readily available.
You might also think about whether Vault sign-in should have an option to make use of Windows Hello (and whatever Mac equivalent is). Admittedly, a separate topic.
Quicken's lack of support for passkeys will eventually become viewed as a liability for the financial industry if it means that institutions cannot retire older password-based access methods. (Recall that the full security benefit of passkeys is not achieved until less-secure mechanisms — SMS, password — are removed from an account.)
All that said passkey, support should be prioritized for Quicken's web sites, cloud backup services, and anything based on Quicken IDs as well.
I need to pile on. If a key selling point is that we can automate entering transactions, it is losing its value quickly since several of my online accounts use passkeys (my choice) and now are no longer available for update. I don't want leave Quicken, but if it can't provide that basic service, it is not worth paying for, especially coming on top of the change to online billers that didn't seem to solve anything, now a different set of bill disappear into the ether.
Seriously, the online story isn't compelling anymore. I'm not angry. I'm not pounding the table. I've pretty much lost trust in the product at this point. Give me a reason to stay.
I just upvoted this.
Financial institutions are slowly moving towards WebAuthn (glacial pace it would appear). I cannot wait for the FIs who still insist on email and/SMS as a factor to ditch.