Last month, I reported on Microsoft's plans to retire SMS codes for authentication and account recovery on personal Microsoft accounts. The company stated that SMS-based authentication is a leading source of fraud, and outlined its plans to replace it with more secure options, such as passkeys, authenticator apps, and verified email addresses.
And now, a similar change is making its way to Microsoft’s Chromium-based web browser, Edge. The company recently removed support for the Master Password feature. Microsoft first announced the change during the rollout of Edge version 145, noting its plan to end support for master passwords in the browser’s password manager on June 4, 2026 (via TechRadarPro).
On June 4, Custom Primary Password will be fully removed for opted‑in users. After this date, Microsoft Edge will automatically use device‑based authentication (such as Windows Hello, device password, or OS‑level authentication) to protect saved passwords.
Microsoft
Microsoft is replacing the master password feature in Edge with device-based authentication methods such as Windows Hello (PIN, fingerprint, or facial recognition). The company views Windows Hello as more secure and convenient compared to the custom primary password arrangement. This is because it is less susceptible to sophisticated attacks by bad actors since they'll need your fingerprint, face, or iris scan to access your account.
For context, a master password is designed to let you unlock and access all your online accounts. However, it can be viewed as a risk, especially if a third party knows your custom primary password. This means they can access sensitive data without your consent.
Alternatively, you can use your Windows PC's login, which is restricted to your device's hardware and won't send authentication data to the cloud.
While Windows Hello will seemingly make your passwords and online credentials more secure, the security feature also ships with its own fair share of challenges. In June 2025, multiple reports from web users indicated that Windows Hello no longer worked in the dark.
Microsoft confirmed that it wasn't a bug and that Windows now requires both IR sensors and a webcam that can see your face to sign in. If you've relied on a master password in Edge until now, it's time to consider your options for secure sign-ins — and always keep your passwords safe!
Join us on Reddit at r/WindowsCentral to share your insights and discuss our latest news, reviews, and more.
