@fastfinge I've had a few of these over the years and have never actually ever used the management tools from them. I've typically used the built-in Windows or web browser support for them.
@andrew You need the management tools if you want to put PGP and SSH keys on them. Or at least, that was the quickest way I could figure out of doing it.
@fastfinge The only thing I remember about using a YubiKey back in the day was accidentally touching it, quite frequently, and dumping a massive string of text into whatever edit field I was focused on at the time. Do they still do that? @andrew
@fastfinge@jscholes We have these at work and people are always doing this, its especially prevalent in Teams because the string it sends finishes with CRLF so the message gets automatically sent.
@fastfinge@jscholes I've just used them for authentication into Windows accounts and websites like Bitwarden etc. The ones I have here are old as they don't support NFC.
@andrew@jscholes NFC is a critical feature for me. I do testing across android, IOS, mac, and Windows, and need my secure accounts available in all the places.
@fastfinge@jscholes I was going to buy new keys but decided I only use them very occasionally so I'm actually trying to live without them for the time being. I never used them for SSH keys.
@andrew@jscholes I'd say that the default SSH key workflow is fine, unless you need keys on multiple machines. Yubikey for SSH is way more convenient than a jumpbox, or making dozens of keys and keeping track of them all.
@fastfinge@jscholes Glad you said that actually as I was really struggling to have a reason for buying a new set of these keys and if I get a compelling reason I will do so its just not something I feel I need at the moment with the number of machines I need to manage. Interestingly at work we have to SSH into Linux boxes with passwords after connecting to a Bastion via the Ubikey. Love large orgs.
