Associating a YubiKey with a Microsoft Windows account is straightforward for both enterprise users connected to a domain and individuals running a single computer.
For enterprise users, the YubiKey 4, YubiKey 4 Nano, and YubiKey NEO act as a smart card, by linking to a Windows Certificate Authority, and work with any supported Microsoft Windows client operating system. This configuration enables RSA or ECC sign/decrypt operations. These keys support NIST’s SP 800-73 Personal Identity Verification Card (PIV) interface. There are two ways to set up these YubiKeys for use with enterprise Windows login:
Free Windows Login for Enterprise
YubiKey PIV Manager tools are available in user interface or command line versions.
- Download PIV Manager Tools
- More about YubiKey and PIV
- Video: Windows Sign-in with YubiKey Smart Card Functionality (coming soon)
Authlite from Collective Software integrates with Microsoft’s Active Directory to support two-factor authentication. Visit Authlite for details.