[ChancyChance]

I was a big fan of Yubikey (I have 3) until fewer and fewer services supported them, instead switching to authenticator apps. Now I have zero hard tokens, but still four authenticator apps: Google + 3 for banking services that use their own.

The biggest killer was the fact that Yubikey NFC is so awful. I worked with tech support repeatedly, even bought two new keys, and it almost never worked right.

[tpmx]

I think it makes a lot of sense for things like AWS developer/devops access.

With AWS IAM Identity Center (successor to AWS Single Sign-On) - that's actually the official name, hopefully temporary - it seems well supported via WebAuthn. You can "even" have multiple keys assigned to your account...

[Arnavion]

Services support Yubikeys through U2F / WebAuthn, not anything Yubikey-specific, right? If you're using services that don't support that, I take it the apps you do use are using TOTP?

[nine_k]

This works with desktop / laptop where you can attach the key over USB.

On mobile, if it works at all, it should be NFC.

[ChancyChance]

All three of my banks do not support Yubikey according to their tech support.

[Arnavion]

I'm not asking you what they don't support. I'm asking you what they do support.

[ChancyChance]

Their own hard tokens and authenticator apps.