Okta + Yubico

Accelerating passwordless together with simple, quick, and secure authentication at your fingertips.

The Challenge

1.

Stolen login credentials - According to the 2024 Verizon Data Breach Investigations Report, 68% of breaches are caused by stolen credentials

2.

Passwords are inherently weak and can be easily stolen and basic 2FA passwords alone are not enough to secure your data

3.

Organizations need a easy to adopt, scalable and proven solution

4.

Organizations may have more stringent requirements to prove satisfactory security protection to external audiences

The Solution

Creating phishing-resistant users who can go passwordless effortlessly with fast, out-of-the-box FIDO activation

Move past phishing-resistant authentication to phishing-resistant users with authentication that moves seamlessly with the user across devices, services and business scenarios. Seamlessly register YubiKeys to end users and remove hijacking of their account lifecycle, from onboarding, to authentication to account recovery. Introducing Yubico FIDO Pre-reg with Okta - the seamless way to create phishing-resistant users and accelerate your business to passwordless.

Now, your users can get started with phishing-resistant MFA in just minutes and stop account takeovers in their tracks. Yubico FIDO Pre-reg eliminates the need for admins to manually register keys for users, saving on time and costs. Users enjoy secure access to their online accounts in two easy steps by simply entering a PIN and successfully authenticating to their online accounts, all without ever needing a password! Yubico FIDO Pre-reg is available through YubiKey as a Service which delivers greater business agility with YubiKeys as a Service, lowering cost to entry.

Following the initial Limited Early Access period in October 2023, we are excited to broaden the program further into an Early Access (EA) period for customers. The EA adds support for both new and existing users, all NFC-enabled YubiKeys, and the ability to ship keys to 72 countries globally. General Availability for Yubico FIDO Pre-reg, available through the YubiKey as a Service program, is planned for late 2024, when all YubiKeys will be available. If you are interested in joining our EA program and following the Yubico FIDO Pre-reg journey, please share your interest by submitting contact details via the Yubico FIDO Pre-reg interest form.

 

Reduced IT burden

Administrators no longer need to register YubiKeys on behalf of their users or require users to self-enroll. This saves time and costs by eliminating the need to manually register security keys for each employee, one by one.

Simple and fast for users

Users receive YubiKeys that are pre-registered and no longer need to self-enroll, leaving them free to enjoy secure, passwordless access to their online accounts in minutes.

Accelerated business securely

Yubico FIDO Pre-reg is available through the YubiKey as a Service program which delivers greater business flexibility and agility with a YubiKeys as a Service model, which lowers the cost to entry, and dramatically raises the bar for security.

Strong phishing-resistant MFA

Okta Adaptive MFA customers can leverage multiple authentication protocols available on the YubiKey to address varying use cases, protecting all users, from entry-level to executive, with robust and reliable authentication they can trust.

Compatible

Okta Adaptive MFA and the YubiKey are both supported by a wide range of integrations across leading vendors in infrastructure and security, enabling the joint solution to work across devices and platforms.

Always On

Okta's Adaptive MFA adapts to specific risk levels of each authentication attempt; giving an organization continuous protection. Combining this with YubiKeys, which provide reliable hardware-backed security that is battery free and always on and accessible, organizations can rest assured that they have strong phishing-resistant requirements in place.

Secure Access

Okta Desktop MFA for macOS supports all FIDO2 YubiKey models (i.e., YubiKey 5 Series and Security Key Series by Yubico) for authenticating into Apple computers with online access, making the passwordless experience part of the secure access flow.

How Okta + Yubico work together:

The YubiKey and Okta Adaptive MFA provide the strongest level of identity assurance and defense against phishing and man-in-the-middle attacks, while also delivering a simple and seamless user experience—all with just the touch of the device. YubiKey security keys can be used as the primary, step-up, or back-up authentication method in conjunction with Okta Adaptive MFA, ensuring secure user access at all times.