AWS Single Sign-On (SSO) makes it easy to centrally manage and provide users with single sign-on access to multiple AWS accounts and business apps from one place. AWS SSO supports WebAuthn to enable strongly attestable and phishing-resistant security across supported browsers using interoperable FIDO authenticators like the YubiKey.
AWS Single Sign-On works with:
Self-verified listing
This product integration meets passing criteria for usability. This information is submitted by the product owner and shared with Yubico.
Troubleshooting
Instructions
Instructions
Identify your YubiKey
Categories
- Identity Access Management
Compatible YubiKeys
- Security Key C NFC
- Security Key NFC
- YubiKey 5 NFC
- YubiKey 5 NFC FIPS
- YubiKey 5 Nano
- YubiKey 5 Nano FIPS
- YubiKey 5C
- YubiKey 5C FIPS
- YubiKey 5C NFC
- YubiKey 5C NFC FIPS
- YubiKey 5C Nano
- YubiKey 5C Nano FIPS
- YubiKey 5Ci
- YubiKey 5Ci FIPS
- YubiKey Bio - FIDO Edition
- YubiKey Bio C - FIDO Edition
Not sure what key you have? Identify it here.
Compatible legacy YubiKeys
- Fido U2F Security Key
- Security Key
- YubiKey 4
- YubiKey 4 Nano
- YubiKey 4C
- YubiKey 4C Nano
- YubiKey Edge
- YubiKey Edge-n
- YubiKey NEO
- YubiKey NEO-n
Product overview
AWS Single Sign-On (SSO) allows for easily assigning and managing your employees’ access to multiple AWS accounts, SAML-enabled cloud applications (such as Salesforce, Office 365, and Box), and custom-built in-house applications, all from a central place.By default, when a user signs in to the user portal, they sign in with their email address and password (the first factor). With the added integration of WebAuthn, AWS SSO now enables you to secure user access to AWS accounts and business applications using multi-factor authentication (MFA) with FIDO-enabled security keys, such as the YubiKey, and built-in biometric authenticators, such as Touch ID on Apple MacBooks and facial recognition on PCs.
Security protocol support
- One Time Password - TOTP
- Universal 2nd Factor (U2F)
- FIDO2/WebAuthn
Desktop/laptop platform support
- Classic Mac OS
- Firefox OS
- Linux
- macOS
- Microsoft Windows
Browser support
- Brave
- Chromium
- Google Chrome
- Microsoft Edge
- Mozilla Firefox
- Safari
Get started
Get started using AWS Single Sign-On with the YubiKey.
Interested in this service?
Visit AWS Single Sign-On for more information.