Layer up with Onion ID and the YubiKey

Onion ID with yubikeys

According to the 2017 Thales Data Threat Report, nearly two thirds (63%) of senior security executives polled indicated that their organizations deploy new technologies such as cloud, big data, IOT, and containers before having the security in place to protect them. With 88% feeling vulnerable to a cyberattack, organizations are now starting to shift their focus to securing all these new technologies with multi-factor authentication (MFA). In fact, the report shows that US and global retail organizations rank MFA in the top 3 data security tools they plan to implement this year.

Onion ID Logo
Ecosystem Showcase: Onion ID

Yubico ecosystem partner Onion ID offers organizations the opportunity to use various methods of authentication—ranging from biometrics to location to security keys—to protect any web application or server in their IT infrastructure. Onion ID secures privileges for accounts on any server, container, and SaaS applications, and acts as a single pane of glass to provide security, visibility, and auditing to organizations of all sizes.

“Before we integrated YubiKey support, our customers used MFA methods that required their employees to use their mobile phones to verify their identity. To complete the mobile authentication process, data has to be trafficked to and from the internet, which is not ideal or secure for customers handling sensitive data, such as medical and financial information. If an organization doesn’t want to pass their employees’ information through the internet or have their employees install an app on their phones, what we recommend is a hardware-based security key like the YubiKey,” said Onion ID founder Anirban Banerjee.

While still common in enterprise security, mobile authentication methods like SMS and phone calls are essentially unencrypted and vulnerable to phishing. Phone and SMS networks have been exploited by governments, criminal gangs, and even penetration testing firms. Phone companies can also provide access to personal records if required to by legal order or if they are hacked or tricked.

“Organizations need an MFA solution they can fully control without needing to download and use third-party apps like Google Authenticator. Our customers find that the YubiKey offers them just that — an MFA option that is easy, affordable, and can help control exactly what an employee can do on a server or a SaaS application,” said Anirban.

With support for Yubico OTP, Onion ID successfully combines versatility with ease of use and security to protect privileged accounts on AWS, Rackspace, and more. Yubico OTP works with no client software needed, allows for self-provisioning, as well as authenticating without a username, and is easy to implement.

“Integrating Yubico OTP was simple and did not take a lot of effort from our side. The API documentation is clear, and there was excellent communication between our teams. It took us about 2 weeks for the initial integration, and 1 week for fine tuning. We also use the YubiKey internally and are happy with our experience,” he added.

Onion ID offers a cloud-based Software as a Service (SaaS) security solution that enables organizations to control access across all their properties in 60 seconds. From server privilege access management (Server PAM) for secrets storage to SaaS privilege access management (SaaS PAM), Onion ID and the YubiKey provide the secure sharing of API keys and credentials between your employees and automated script.

By giving organizations the ability to choose and easily enable MFA on apps and servers of their choosing with zero change, Onion ID provides security, visibility, and flexibility for organizations of all sizes.

Learn more about protecting your privileged accounts with Onion ID.

Yubico is proud to highlight Onion ID as part of an ongoing YubiKey ecosystem awareness program. Visit our Featured Solutions page to learn more about all the products and services that support the YubiKey.

Talk to our teamTalk to our team

Share this article:


  • Introducing new features for Yubico Authenticator for iOSWe’re excited to share the new features now available for Yubico Authenticator for iOS in the latest app update on the App Store. Many of these improvements aim to address frequently requested features from our customers, while providing additional new functionalities for a seamless authentication experience on iOS.  With increased interest in going passwordless and […]Read moreiOSYubico Authenticator
  • Platform independent digital identity for all Many are understandably concerned that the great invention called the Internet, initially created by researchers for sharing information, has become a major threat to democracy, security and trust. The majority of these challenges are caused by stolen, misused or fake identities. To mitigate these risks, some claim that we have to choose between security, usability […]Read moreDigital IdentityEUDIFounderStina Ehrensvard
  • Q&A with Yubico’s CEO: Our move to the main Nasdaq market in StockholmAs 2024 draws to a close, it’s the perfect time to reflect on the incredible journey we’ve had this year and how it has shaped where we stand today as a company. To mark this moment, I sat down with our CEO, Mattias Danielsson, to look back on the milestones and achievements of 2024—culminating in […]Read moreCEOMattias Danielsson
  • Exploring DORA: A look at the next major EU mandateFinancial institutions have historically managed operational risk using capital allocation, but under EU Regulation 2022/2554 – also known as the Digital Operational Resilience Act (DORA) – the financial sector and associated entities in the European Economic Area (EEA) must also soon follow new rules. These new rules focus on the protection, detection, containment, and the […]Read moreDORAEU