Allow security key 2FA without setting up OTP 2FA
I would greatly appreciate if you could allow users to set up 2-factor authentication using a U2F/FIDO2 security key, without also having to set up OTP-based 2FA.
56
votes
Anonymous
shared this idea
-
Anonymous commented
No point in having security key if OTP is going to be the weakest link. In order to mitigate users locking themselves out, you can set a minimum number of yubikeys and many warnings.