Episode 271: Yubikeeeeyyyyyyssssss

Multi Factor Authentication is a topic we’ve covered here and there in the past. Yubikey is one of those companies that many of us have worked with. But planning for larger scale deployments is different than getting a key to work with our own password manager or in isolated cases. Further, webauthn and other standards are being embraced by Apple in the upcoming releases of the Apple operating systems. So in this episode we’ll talk about what a Yubikey is, how to use them, and some of those things that we wish we’d’ve known before we got started!

Hosts: Tom Bridge - @tbridge777 Charles Edge - @cedge318

Guests:

John Mahlman - @EdTechJohnM

Links:

Yubikey 5 Yubikey FIPS WebAuthn Azure AD and Yubikey Yubikey on Google Accounts Use Yubikey with JumpCloud Setting up a Google Workspace Account with a hardware key sc_auth man page PIV Certificate Key Slots Yubikey SDK CMMC 2.0 FIPS 140-2

Acronyms:

CAC = Common Access Cards PIV = Personal Identity Verification SCIF = Sensitive Compartmented Information Facility FIPS = Federal Information Processing Standards PGP = Pretty Good Privacy CMMC = Cybersecurity Maturity Model Certification FedRAMP = Federal Risk and Authorization Management Program

Sponsors:

Kandji Halp VMware Workspace One Watchman Monitoring

If you're interested in sponsoring the Mac Admins Podcast, please email [email protected] for more information.

Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast!

The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad Swarthout, William Smith, Stephen Weinstein, Seb Nash, Dan McLaughlin, Joe Sfarra, Nate Cinal, Jon Brown, Dan Barker, Tim Perfitt, Ashley MacKinlay, Tobias Linder Philippe Daoust, AJ Potrebka, Adam Burg, & Hamlin Krewson