Short answer: not as a first-factor password alternative. - Ory supports passwordless methods (passkeys/WebAuthn, email/SMS one-time codes) and multi-factor methods (TOTP, WebAuthn, SMS). There’s no documented first-factor “PIN” credential type like many native apps use (a 4–6 digit app PIN) ([Passwordless overview](https://www.ory.sh/docs/kratos/passwordless/passwordless), [Passkeys](https://www.ory.sh/docs/kratos/passwordless/passkeys), [One-time code](https://www.ory.sh/docs/kratos/passwordless/one-time-code), [MFA overview](https://www.ory.sh/docs/kratos/mfa/overview)). - The blog also notes PINs’ drawbacks and does not recommend them as a primary online authenticator ([Industry-standard authenticators](https://www.ory.sh/blog/overview-login-password-passkey-webauthn-totp-sso-faceid)). If you want a PIN-like UX without passwords, the closest built-in options are: - Passwordless passkeys/WebAuthn for biometric/device unlock flows ([Passkeys](https://www.ory.sh/docs/kratos/passwordless/passkeys)). - Email/SMS one-time codes (OTP) for simple two-step authentication ([One-time code](https://www.ory.sh/docs/kratos/passwordless/one-time-code)).