Okta + Yubico

1.

Stolen login credentials - According to the 2024 Verizon Data Breach Investigations Report, 68% of breaches are caused by stolen credentials

2.

Passwords are inherently weak and can be easily stolen and basic 2FA passwords alone are not enough to secure your data

3.

Organizations need a easy to adopt, scalable and proven solution

4.

Organizations may have more stringent requirements to prove satisfactory security protection to external audiences

Creating phishing-resistant users who can go passwordless effortlessly with fast, out-of-the-box FIDO activation

Advance from phishing-resistant authentication to creating phishing-resistant users with security that seamlessly follows them across devices, services, and business scenarios. Yubico’s YubiKeys enable organizations to easily register hardware security keys for end users, securing every stage of the account lifecycle—from onboarding to authentication and recovery—while eliminating the risk of account hijacking.

With Yubico Enrollment Suite with Okta, organizations can select their path to stronger security, and easily enroll YubiKeys on behalf of users leveraging either Yubico FIDO Pre-reg or YubiEnroll.

Yubico FIDO Pre-reg

Yubico FIDO Pre-reg offers a turnkey service that delivers pre-enrolled YubiKeys to users, no matter where they are, in corporate or residential locations, and empowers them to go passwordless from day one.

Available exclusively through YubiKey as a Service, Yubico FIDO Pre-reg is ideal for organizations with over 500 users, with Yubico handling all of the key delivery logistics door-to-door, and reducing burden for both IT staff and end users.

YubiEnroll

YubiEnroll enables organizations of all sizes to easily enroll YubiKeys on behalf of end users, or do so through partners, making going passwordless a snap.

With YubiEnroll, organizations can empower their IT team to enroll YubiKeys on short notice, or do so in certain geographies that cannot easily accommodate turnkey delivery services. With YubiEnroll, organizations that purchase YubiKeys can gain access to a client application that allows IT to enroll YubiKeys for the user and deliver them directly to the user.

Reduced IT burden

Administrators no longer need to register YubiKeys on behalf of their users or require users to self-enroll. This saves time and costs by eliminating the need to manually register security keys for each employee, one by one.

Simple and fast for users

Users receive YubiKeys that are pre-registered and no longer need to self-enroll, leaving them free to enjoy secure, passwordless access to their online accounts in minutes.

Accelerated business securely

Yubico FIDO Pre-reg is available through the YubiKey as a Service program which delivers greater business flexibility and agility with a YubiKeys as a Service model, which lowers the cost to entry, and dramatically raises the bar for security.

Strong phishing-resistant MFA

Okta Adaptive MFA customers can leverage multiple authentication protocols available on the YubiKey to address varying use cases, protecting all users, from entry-level to executive, with robust and reliable authentication they can trust.

Compatible

Okta Adaptive MFA and the YubiKey are both supported by a wide range of integrations across leading vendors in infrastructure and security, enabling the joint solution to work across devices and platforms.

Always On

Okta's Adaptive MFA adapts to specific risk levels of each authentication attempt; giving an organization continuous protection. Combining this with YubiKeys, which provide reliable hardware-backed security that is battery free and always on and accessible, organizations can rest assured that they have strong phishing-resistant requirements in place.

Secure Access

Okta Desktop MFA for macOS supports all FIDO2 YubiKey models (i.e., YubiKey 5 Series and Security Key Series by Yubico) for authenticating into Apple computers with online access, making the passwordless experience part of the secure access flow.

The YubiKey and Okta Adaptive MFA deliver top-tier identity assurance, protecting against phishing and man-in-the-middle attacks while ensuring a seamless, user-friendly experience with a simple touch. As a cornerstone of Zero Trust security, YubiKeys enable strong, phishing-resistant, passwordless authentication, making it easy for users to securely access apps and services.

Together, Yubico and Okta empower enterprises, government agencies, and consumers to prevent account takeovers and streamline passwordless workflows. This robust partnership ensures reliable, modern authentication across any device or context, overcoming the common barrier of user adoption by providing security without compromising usability.