FIDO2 (Yubikey et al) support

Next-generation cloud-hosted OpenVPN business solution.
Post Reply
kelly.clowers
OpenVpn Newbie
Posts: 4
Joined: Fri May 28, 2021 6:44 pm

FIDO2 (Yubikey et al) support

Post by kelly.clowers » Fri May 28, 2021 6:48 pm

I don't think OpenVPN server yet has built in support for FIDO2, but there are lots of ways to add it, plenty of guides out there...
but no option for it with OpenVPN Cloud

FIDO2 being one of the easiest and most secure forms of 2FA/MFA, this seems like a big oversight. Any timeline estimate for when it might be available? Is it being planned at least?

User avatar
openvpn_inc
OpenVPN Inc.
Posts: 1332
Joined: Tue Feb 16, 2021 10:41 am

Re: FIDO2 (Yubikey et al) support

Post by openvpn_inc » Wed Jun 02, 2021 9:38 pm

Hi There,

Unfortunately OpenVPN Cloud doesn't support yubikey at the moment. However, if you use SAML, we can enable authentication in native browser for your account. So if your IdP supports yubikey, you will be able to use yubikey like on any other web portal.
kelly.clowers wrote:
Fri May 28, 2021 6:48 pm
I don't think OpenVPN server yet has built in support for FIDO2, but there are lots of ways to add it, plenty of guides out there...
but no option for it with OpenVPN Cloud

FIDO2 being one of the easiest and most secure forms of 2FA/MFA, this seems like a big oversight. Any timeline estimate for when it might be available? Is it being planned at least?
Regards,
Crowley
Image OpenVPN Inc.
Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support

User avatar
openvpn_inc
OpenVPN Inc.
Posts: 1332
Joined: Tue Feb 16, 2021 10:41 am

Re: FIDO2 (Yubikey et al) support

Post by openvpn_inc » Thu Jul 01, 2021 3:25 pm

Hello,

Just wanted to update here that now since the release of OpenVPN Connect v3.3 for Windows, we now support PKCS11 hardware tokens such as the Yubikey. More details can be found here:
https://openvpn.net/vpn-server-resource ... n-connect/

Kind regards,
Johan
Image OpenVPN Inc.
Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support

Post Reply