PKI using the Yubikey

stadtwerke.team · July 11, 2025, 9:21am

What is a one sentence summary of your feature request?

Use the MFA with Cert on the Yubikey

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

We want to login dirket with the Cert in the lokal Setting.

How do you currently solve the challenges you have by not having this feature?

With Authenticator

d.wac · July 14, 2025, 9:17am

If you want to be logged in with your user certificate and PIN from your Yubikey insted of the ad-user password… thats what is already possible. Set “Edit first factor” in the Global user Settings or specific organisational unit / user setting for Windows application to “Smartcard”.

PS: If you want to let the users use the web app, you can set the FIDO2 for web application.

ZoephelP · September 9, 2025, 10:17am

Is FIDO2 functionality exclusively available when users are operating in Master Key Mode? Given that our users are currently in E2EE Mode, does this imply that FIDO2 cannot be utilized in E2EE Mode?

ZoephelP · September 11, 2025, 6:53am

Now I see it. It’s solely for the app.

Topic		Replies	Views
Support for Yubikey BIO Fido Edition Ideas new , ideas , yubikey	0	24	August 12, 2025
Allow for the use of YubiKey to access NPS Ideas planned , ideas	5	201	March 18, 2025
Fallback MFA instead of MFA reset Ideas planned , ideas , mfa	2	80	August 14, 2025
SSO in Webclient with SAML, OpenID, NTLM, or KERBEROS Ideas planned , ideas	0	62	June 3, 2025
MFA for Windows Offline Client Ideas password-secure , new , ideas , mfa , offline	2	88	October 28, 2025

PKI using the Yubikey

What is a one sentence summary of your feature request?

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

How do you currently solve the challenges you have by not having this feature?

Related topics