Y
Hacker News
new
|
ask
|
show
|
jobs
by
chowell
2422 days ago
I was super surprised to learn AWS will only allow you to register a single FIDO token - the inherent lockout risk pushed me back to using OTP with the seed stored in multiple Yubikeys.
2 comments
blintz
2422 days ago
This is actually against the WebAuthn spec (
https://www.w3.org/TR/webauthn-1/#credential-loss-key-mobili...
). Hope they fix it soon.
link
bradstewart
2421 days ago
Yea it's very annoying. I ended up making multiple IAM users--one for each of my security keys.
link