Fast and Secure Way to MFA - and Password-less, Too!
February 02, 2024
Fast and Secure Way to MFA - and Password-less, Too!
Score 10 out of 10
Vetted Review
Verified User
Modules Used
- YubiKey 5 Series
- YubiKey 5 FIPS Series
- YubiKey Bio Series
- Yubico Authenticator
- YubiKey 5C Nano
Overall Satisfaction with Yubico YubiKeys
Yubico YubiKeys are an essential part of our logins. When hired, every employee in my business unit receives a YubiKey 5c Nano along with their laptop. Since we are a hybrid workforce and many of us work from home, this allows us to log in with phishing-resistant MFA to all of our SaaS applications that are protected by Duo. Since WebAuthn is the standard from the start, this ensures that the highest level of protection is enforced from an authentication perspective. This has solved the issue of wondering whether or not users are logging in securely from disparate locations. It is also easy for users to authenticate with the tap of a finger to access critical applications - even in a Passwordless workflow!
- Ease of use
- Multiple authentication protocols
- Cross-compatibility
- Reduce the cost of keys
- Honestly, Yubico YubiKeys are great and have all the features we need
- No other criticisms - it just works!
- Multiple authentication methods supported (FIDO2 + AES/OTP)
- Ease of use
- Provisioning/user onboarding
- Reducing breaches (phishing-resistant MFA)
- Passwordless (quicker, easier, safer logins)
- End user self-enrollment (no administrative setup for WebAuthn)
It has greatly reduced the likelihood of successful phishing attacks, makes MFA easier for end users (better experience equals users will comply with security controls), and helps secure applications by providing out-of-the-box compatibility with modern web browsers. Our overall risk exposure and attack surface have diminished to allow secure authentications from anywhere in the world.
Whether it is WebAuthn or OTP, Yubico YubiKeys allows a single tap of a button to use MFA. With WebAuthn, this has changed the game as we also have a Passwordless authentication workflow and, with the use of FIDO2-compliant YubiKeys, makes the fastest and most secure login experience possible for our users.
Duo and Yubico YubiKeys actually work very well together. We have chosen to use these two products together to make safe and secure MFA (including Passwordless) available to all users. The ease of use that Duo allows for both OTP import and WebAuthn enrollment makes it possible for modern and legacy applications to be protected by Duo MFA via Yubico YubiKeys as the second factor.
Do you think Yubico YubiKeys delivers good value for the price?
Yes
Are you happy with Yubico YubiKeys's feature set?
Yes
Did Yubico YubiKeys live up to sales and marketing promises?
Yes
Did implementation of Yubico YubiKeys go as expected?
Yes
Would you buy Yubico YubiKeys again?
Yes