By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Outside of AWS IAM Identity Center, does AWS support FIDOs/WebAuthn protocols for MFA, such as for Yubikeys when you access Workspaces?

0

My specific use case is to enforce a Yubikey hard-token when I use an AWS Workspaces client to login to a workspace. It seems like the only way to have FIDO2/WebAuthn supported (versus TOTP) is to use IAM Identity Center (which was formerly AWS SSO?). Other similar use cases would be FIDO2/Webauthn support for the CLI and Workspaces, does that require using IAM Identity Center (AWS SSO)?

Hopefully that makes sense! Please let me know if you need more details!

Topics
End User ComputingBusiness ApplicationsSecurity, Identity, & Compliance
Tags
Amazon WorkSpacesAmazon WorkDocsAWS IAM Identity CenterMulti-factor Authentication
Language
English
rePost-User-0313018
asked a month ago220 views
1 Answer
0
Accepted Answer

Yes, you're right! Currently, outside of AWS IAM Identity Center (formerly AWS SSO), AWS does not offer native support for FIDO2/WebAuthn protocols like YubiKeys for multi-factor authentication (MFA) when accessing Workspaces directly.

profile picture
Bhagavan Bollina
answered a month ago
profile pictureAWS
EXPERT
Didier_Durand
reviewed a month ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content