Layer up with Onion ID and the YubiKey

Onion ID with yubikeys

According to the 2017 Thales Data Threat Report, nearly two thirds (63%) of senior security executives polled indicated that their organizations deploy new technologies such as cloud, big data, IOT, and containers before having the security in place to protect them. With 88% feeling vulnerable to a cyberattack, organizations are now starting to shift their focus to securing all these new technologies with multi-factor authentication (MFA). In fact, the report shows that US and global retail organizations rank MFA in the top 3 data security tools they plan to implement this year.

Onion ID Logo
Ecosystem Showcase: Onion ID

Yubico ecosystem partner Onion ID offers organizations the opportunity to use various methods of authentication—ranging from biometrics to location to security keys—to protect any web application or server in their IT infrastructure. Onion ID secures privileges for accounts on any server, container, and SaaS applications, and acts as a single pane of glass to provide security, visibility, and auditing to organizations of all sizes.

“Before we integrated YubiKey support, our customers used MFA methods that required their employees to use their mobile phones to verify their identity. To complete the mobile authentication process, data has to be trafficked to and from the internet, which is not ideal or secure for customers handling sensitive data, such as medical and financial information. If an organization doesn’t want to pass their employees’ information through the internet or have their employees install an app on their phones, what we recommend is a hardware-based security key like the YubiKey,” said Onion ID founder Anirban Banerjee.

While still common in enterprise security, mobile authentication methods like SMS and phone calls are essentially unencrypted and vulnerable to phishing. Phone and SMS networks have been exploited by governments, criminal gangs, and even penetration testing firms. Phone companies can also provide access to personal records if required to by legal order or if they are hacked or tricked.

“Organizations need an MFA solution they can fully control without needing to download and use third-party apps like Google Authenticator. Our customers find that the YubiKey offers them just that — an MFA option that is easy, affordable, and can help control exactly what an employee can do on a server or a SaaS application,” said Anirban.

With support for Yubico OTP, Onion ID successfully combines versatility with ease of use and security to protect privileged accounts on AWS, Rackspace, and more. Yubico OTP works with no client software needed, allows for self-provisioning, as well as authenticating without a username, and is easy to implement.

“Integrating Yubico OTP was simple and did not take a lot of effort from our side. The API documentation is clear, and there was excellent communication between our teams. It took us about 2 weeks for the initial integration, and 1 week for fine tuning. We also use the YubiKey internally and are happy with our experience,” he added.

Onion ID offers a cloud-based Software as a Service (SaaS) security solution that enables organizations to control access across all their properties in 60 seconds. From server privilege access management (Server PAM) for secrets storage to SaaS privilege access management (SaaS PAM), Onion ID and the YubiKey provide the secure sharing of API keys and credentials between your employees and automated script.

By giving organizations the ability to choose and easily enable MFA on apps and servers of their choosing with zero change, Onion ID provides security, visibility, and flexibility for organizations of all sizes.

Learn more about protecting your privileged accounts with Onion ID.

Yubico is proud to highlight Onion ID as part of an ongoing YubiKey ecosystem awareness program. Visit our Featured Solutions page to learn more about all the products and services that support the YubiKey.

Talk to our teamTalk to our team

Share this article:


  • CEO Corner: Wrapping up a strong year, and looking ahead to 2025 and beyondIt’s no secret that 2024 was a big year of growth for Yubico, highlighted across many notable achievements by our team and increasing demand from our customers. As discussed in my previous post, following a transformative year driven by key cybersecurity trends like passkeys and AI, the year culminated in the significant step of Yubico […]Read moreCEOEarningsMattias Danielsson
  • The rise of AI-driven phishing attacks: What to know and how to be secureAs businesses continue learning the benefits that artificial intelligence (AI) assisted computing tools provide, we’re continuing to see rapid interest and adoption of the technology – especially within the enterprise. Most conversations up until recently have revolved around ChatGPT, but now another new AI-powered large language model tool – DeepSeek – is creating a lot […]Read more
  • Works with YubiKey Spotlight: Expanded partnerships redefining phishing-resistance in 20252024 was an exciting year for Yubico and our partners. Together, we achieved remarkable milestones, launching innovative solutions and forging stronger partnerships – all aimed at delivering the most impactful cybersecurity solutions and user experience for our customers and partners. At the heart of these efforts lies a shared commitment to phishing-resistance.  From registration to […]Read moreWorks with YubiKeywwyk
  • Cybersecurity in 2025 – part two: Insights and predictions from Yubico’s expertsIn part one of our 2025 cybersecurity predictions, we highlighted insights from our experts on the topic of passkeys, digital identity wallets and the threats of AI-driven phishing – areas that saw a lot of focus in 2024, and ones that we expect to continue being a major focus this year. If you missed our […]Read morecritical infrastructurefederal governmentfinancial servicespredictions