AWS Expands YubiKey Support with AWS SSO WebAuthn Integration

Derek Hanson

Derek Hanson

2 minute read

Another win for FIDO at the heels of its first industry conference, Authenticate 2020.  AWS Single Sign-On (SSO) has introduced native WebAuthn support to secure user access to AWS accounts and business applications using strong, FIDO-based multi-factor authentication (MFA) with YubiKeys.  Broader choice of authentication methods by AWS SSO is a win for modern authentication that has historically been limited to username/passwords and basic MFA to validate user access. 

This serves as yet another milestone for Yubico, an Advanced AWS Technology Partner and AWS Public Sector Partner, and the open standards work we’ve pioneered over the past decade

When AWS SSO users authenticate with a YubiKey, the public and private encoded exchange occurs, creating a phishing-resistant connection to commonly used third-party software as a service (SaaS) applications as well as other applications within the AWS ecosystem. The new features in AWS SSO allow administrators to manage access and logins to AWS SSO integrated applications. Administrators can set policies to allow apps to access certain users or groups sourced from AWS SSO or external identity providers (IdPs) such as AWS SSO Identity Store and Microsoft Active Directory. 

Using a YubiKey with AWS SSO increases identity protection, workload administration and simplifies the need to establish user credentials with each application.  Attestation using the YubiKey establishes proof that is tied to the digital you, confirming your access to various cloud based productivity and collaboration applications such as Salesforce, Slack, and Microsoft 365 – eliminating the need to authenticate into each app separately. 

With enforced enrollment features also available on AWS SSO, organizations can prevent unauthorized users from accessing valuable company data by requiring users to add multi-factor authentication methods such as biometrics or security keys.  

This is great news for the AWS and the Yubico ecosystem of app developers, systems integrators, and security administrators who are challenged to secure the organization’s ever-expanding firewall perimeter, while keeping remote workers secure and productive from anywhere, anytime. 

To learn more about protecting AWS SSO with the YubiKey, attend our joint webinar: Modern Authentication to Secure Enterprises: AWS SSO + YubiKeys on December 8th. For developers, read our recent blog: Go passwordless with the new Yubico WebAuthn Starter Kit to build support on WebAuthn. YubiKeys are available at yubico.com/store.

, , ,
Talk to our teamTalk to our team

Share this article:
  • CEO Corner: Maintaining stable growth while navigating global uncertaintyAs we officially close out the first quarter of 2025,  I am pleased we saw a quarter with solid growth and profitability along with ongoing demand for phishing-resistant authentication. We continue to see new types of high-profile cyber attacks appearing regularly, and a major reason for the success of phishing attacks is stolen credentials. As […]Read moreCEOCEO CornerEarningsMattias Danielsson
  • Introducing the Yubico Academy: Enabling partners for a phishing-resistant futureAt Yubico, strong partnerships are fundamental to a more secure digital world. Our commitment goes beyond providing leading security keys; it’s about actively fostering the growth of our valued partners through impactful enablement programs. A cornerstone is the Yubico Academy, featuring our comprehensive certification program.  This program enables our partners’ teams to become Yubico experts, […]Read more
  • AI is booming — but proving you’re human matters more than everIf you walked the show floor at the RSA Conference this year, you probably noticed the same thing I did: Artificial Intelligence (AI) is everywhere. Agentic AI. AI in threat detection. AI in firewalls. AI in identity management. AI-generated demos. AI everything. The energy around AI was undeniable, and we’re seeing real innovation, efficiency gains […]Read moreAIArtificial IntelligencephishingRSAC
  • Ditching passwords for good: Celebrating the inaugural World Passkey DayHave you ever been stuck in a relationship with someone who constantly lets you down, exposes your secrets, and leaves you vulnerable? Odds are you cut your losses, packed up your things and moved on. Today is the day to do the same with your passwords: say goodbye forever! The reality is a majority of […]Read morepasskeyspasswordlessWorld Passkey Day