Outside of AWS IAM Identity Center, does AWS support FIDOs/WebAuthn protocols for MFA, such as for Yubikeys when you access Workspaces?


My specific use case is to enforce a Yubikey hard-token when I use an AWS Workspaces client to login to a workspace. It seems like the only way to have FIDO2/WebAuthn supported (versus TOTP) is to use IAM Identity Center (which was formerly AWS SSO?). Other similar use cases would be FIDO2/Webauthn support for the CLI and Workspaces, does that require using IAM Identity Center (AWS SSO)?

Hopefully that makes sense! Please let me know if you need more details!

1 Respuesta
Respuesta aceptada

Yes, you're right! Currently, outside of AWS IAM Identity Center (formerly AWS SSO), AWS does not offer native support for FIDO2/WebAuthn protocols like YubiKeys for multi-factor authentication (MFA) when accessing Workspaces directly.

profile picture
respondido hace 3 meses
profile pictureAWS
revisado hace 3 meses

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas