Amazon Web Services announces support for FIDO2 security keys

Will Smart

Will Smart

2 minute read

Amazon recently announced improved support for using FIDO2 security keys as an MFA device to log on to the Amazon Web Services (AWS) console. As a result, FIDO2 security keys like the YubiKey are now supported on AWS GovCloud (US region) – providing phishing-resistant MFA for all users. 

Additionally, AWS has improved their support for device attestation in all regions – including supporting IAM policies that can be used to enforce enrollment with FIPS-certified or FIDO Alliance-certified devices. The YubiKey 5 FIPS series, which are both FIPS 140-2 validated and FIDO Level 2 certified, provide the highest level of security and compliance needs.

This news means that however you access the AWS console – either via a root account, an IAM user, commercial or government cloud, a desktop or a supported mobile platform – you can secure your access with an easy-to-use, phishing-resistant FIDO2 security key. AWS even supports enrolling a FIDO2 credential on behalf of another user for organizations that need extra control over their AWS console credentials.

If you have a YubiKey and an AWS account in a standard AWS region, we recommend registering an additional YubiKey today (accounts in standard regions support up to 8 MFA devices per user). AWS GovCloud currently only supports a single MFA device per user, but we anticipate support for multiple security keys in the future as this is provided in standard AWS regions today.

——

To order a YubiKey today, visit Yubico’s store or purchase from Amazon.com and protect your AWS access with phishing-resistant MFA. Find out which YubiKeys are right for you and your business, check out our quiz here

, , , , ,
Talk to our teamTalk to our team

Share this article:
  • Mission matters – my reflections on winning the EY World Entrepreneur of the Year “This is the biggest mission any of the entrepreneurs have presented in this competition.”  I heard these words a few weeks ago from one of the judges for the EY World Entrepreneur of the Year award program – whom I had the honor to meet during the final step of the world’s largest entrepreneur competition.  […]Read moreawardsFounderStina Ehrensvard
  • Yubico recognized by TrustRadius 2025 Award for top customer reviewsAs AI-driven cyber threats like credential phishing evolve and grow in complexity, phishing-resistant YubiKeys are an important component toward cyber resilience — and our mission to make the internet more secure has never been more critical. To support this, customer feedback is something we take very seriously and is an invaluable tool to ensure we’re […]Read moreawardsTrustRadius
  • CEO Corner: Maintaining stable growth while navigating global uncertaintyAs we officially close out the first quarter of 2025,  I am pleased we saw a quarter with solid growth and profitability along with ongoing demand for phishing-resistant authentication. We continue to see new types of high-profile cyber attacks appearing regularly, and a major reason for the success of phishing attacks is stolen credentials. As […]Read moreCEOCEO CornerEarningsMattias Danielsson
  • Introducing the Yubico Academy: Enabling partners for a phishing-resistant futureAt Yubico, strong partnerships are fundamental to a more secure digital world. Our commitment goes beyond providing leading security keys; it’s about actively fostering the growth of our valued partners through impactful enablement programs. A cornerstone is the Yubico Academy, featuring our comprehensive certification program.  This program enables our partners’ teams to become Yubico experts, […]Read more