Is Keycloak built-in the Yubikey OTP as a valid authentication method?

duongviet94 · February 12, 2023, 8:23am

I have to require the Yubikey every time the admin update an User in Keycloak. But I can not find any document for helping on this. Please help me if you have any experiences with this, thank you.

xgp · February 12, 2023, 12:54pm

Yes. Keycloak supports Yubikey with WebAuthn. Docs are here Server Administration Guide

duongviet94 · February 12, 2023, 2:50pm

Yes I known Keycloaks support Yubikey with WebAuthn, but just only when register/login. I want to require Yubikey every time admin update User’s information.

xgp · February 12, 2023, 3:42pm

I don’t think so. It’s possible via step-up for a client you configure, but I don’t think it’s available for the admin.

Topic		Replies	Views
Yubikey and Keycloak integreation Getting advice admin-console , authentication	1	797	April 8, 2022
Yubikey authentication Getting advice	6	12455	October 9, 2020
WebAuthn in Keycloak	0	1133	November 18, 2019
Integrate usb hardware token flow to keycloak Securing applications	1	436	September 9, 2021
2FA bypass of Webauthn-only accounts Getting advice authentication	6	711	June 22, 2023

Is Keycloak built-in the Yubikey OTP as a valid authentication method?

Related Topics