Highest Voted 'fido2' Questions

4

votes

0 answers

Is it possible to disable Windows Hello trying to be my FIDO2 credential?

Sometimes when I try to register using FIDO2, windows asks me for my Windows Hello PIN so that it can authenticate me. Windows Hello asking for a PIN: AFAIK this is windows offering to be a "Platform Credential", as-in, the FIDO2 credential is…

authentication fido2 webauthn

asked Mar 01 '23 at 23:06

Gunni

49

2

votes

0 answers

Can OpenSMTPD use FIDO2 keys for user authentication for sending?

I have scoured the smtpd.conf(5) man page and done several Google searches, but I cannot find anything that implies that OpenSMTPD can use FIDO2 keys for user authentication for sending. Have I missed it, or does it not support this form of…

openbsd fido2

asked May 22 '25 at 22:45

Kenneth

21

2

votes

1 answer

"Passkey can’t be created on this device” error with a Google FIDO2 key on Chrome?

Trying to set up a YubiKey as a backup for my Google account in case I lose my phone. Attempting to set up FIDO2 authentication into my Google Account with a FIDO2 key. My key is for my desktop via USB-C. Creating the key on my Chrome Browser gives…

google-chrome yubikey fido2

asked May 18 '25 at 01:06

daniellooartist

39

2

votes

0 answers

How to use a Yubikey / FIDO2 device / ed25519-sk key with ssh-agent on MacOS (15.3+)

Please note: solutions involving either disabling or modifying the inbuilt ssh-agent are unlikely to work. I've seen numerous people suggest this is due to recent changes in MacOS (I'm on 15.3), but can't prove that. Example: this doesn't work, the…

macos ssh-agent yubikey fido2

asked Feb 20 '25 at 10:53

Philip Couling

339

2

votes

1 answer

Windows 11 2FA prompt opens a console instead of a GUI window

Some time ago, I started using FIDO2 keys (Yubikey 5 NFC, to be precise) as a form of second-factor authentication on a few sites that support it. However, after some change in my system, most likely one of the Windows 11 updates in Autumn 2023, the…

windows-11 windows-hello two-factor-authentication yubikey fido2

asked Feb 16 '24 at 16:50

Tim Taurit

421

2

votes

1 answer

How to interact with FIDO authenticaor (user presence check) from Windows Service?

I have a setup with several on-demand SSH tunnels that I like to manage via Windows Services. I normally use Cygwin with its own OpenSSH (OpenSSH_9.5p1, OpenSSL 3.0.12 24 Oct 2023), but have also tried Microsoft's OpenSSH port…

cygwin openssh windows-services fido2

asked Dec 27 '23 at 00:29

Irfy

277
1
11

2

votes

0 answers

Can I use an iPhone connected via USB to a computer as a FIDO2 security key (for example in OpenSSH)?

In the same way that I can use a Yubikey or any other FIDO2 hardware key to store resident keys for use with OpenSSH (for example ssh-keygen -t ed25519-sk -O resident -O verify-required) I would like to use my iPhone. I have my iPhone most of the…

ios fido2

asked May 18 '23 at 08:09

cs224

121

2

votes

3 answers

Force Use of Hardware Security Key with a Windows Hello Account

Question: Is it possible to bypass Windows Hello (Pin) on a Windows 11 login tied tied to a Microsoft passwordless account? Why? Want to force use of a hardware security key for authentication. I have a Microsoft passwordless account on the…

authentication windows-hello fido2

asked Dec 18 '22 at 22:14

CyberMedics.org

21

2

votes

1 answer

Can a website detect if the same physical FIDO key is used for multiple accounts?

If I have an account, say with google, and only use that account from location A, using device A, and another google account only used with device B in location B, if I used the same 2fa FIDO key for both accounts, would google have any way of…

yubikey fido2

asked Jul 16 '22 at 16:39

user1710978

21

2

votes

1 answer

What is the cryptographic relationship between an ssh key and my Yubikey?

I am curious what is the cryptographic relationship between the generated ssh private (and public) key when I use my Yubikey to add an extra layer of protection. Does ssh-keygen write anything into the Yubikey itself or just communicate with it? If…

yubikey fido2

asked Dec 14 '21 at 15:20

Halacs

152

1

vote

0 answers

Error when register Yubikey Bio with website

I am having an issue registering a yubikey bio with a website. I have managed to register a Yubikey 5 series with the website without issue however when I try with the Yubikey bio I get an error like the one below (it occurs in both edge and…

yubikey fido2

asked Dec 27 '21 at 23:00

John554

473

1

vote

2 answers

Windows is asking for a PIN when I use FIDO device

When I try to use my Yubico 5 NFC FIDO key to authenticate on any portal, Windows opens a Windows Security dialog asking for a PIN. I don't remember having created a PIN. I can't find it when trying now, but there was an option for forgetting the…

windows-10 fido2

asked Nov 29 '21 at 23:06

Hikari

327

0

votes

0 answers

Use SFTP with FIDO2 SSH keys

Is there a windows FTP client that supports FIDO2 keys ? Since FileZilla uses PuTTY it doesn't work, and neither do WinSCP or OpenSFTP (the first two complain that the ssh key file isn't in a known format, OpenSFTP just hangs forever).

openssh sftp ssh-keys fido2

asked Oct 20 '24 at 10:48

Léonito

11

0

votes

0 answers

Have ssh-agent ask for which FIDO key to use

With OpenSSH now supporting FIDO security keys, I want to use my two Yubikeys to store my ssh credentials. I'd like to be able to login to a host using any of my two keys from any of my (mostly windows) clients, using the built-in OpenSSH client…

ssh-agent fido2

asked Oct 09 '24 at 21:56

Léonito

11

0

votes

0 answers

Cache FIDO2 security PIN for a few hours

How to configure Windows to remember my Security Key PIN for a few hours? I've just checked: logged in to the same site twice in incognito mode within 1 minute and I was asked for the PIN twice. _

windows-11 pin fido2

asked Dec 15 '23 at 06:46

basin

534
1
5
17

Questions tagged [fido2]