I have hosted my mail server on AWS. I have now enabled Yubico OTP authentication, and everything is working fine.
However, when I tried to restrict my outbound rules on AWS, I blocked outbound traffic on port 443.
At this point, I noticed that Yubico OTP stopped working correctly.
I would like to know how I can configure a rule for port 443 to allow it to access the Yubico cloud properly.
Adding the IP address of api.yubico.com to the rule doesn’t seem to work.

Thanks

I wouldn’t recommend using this proprietary and outdated technology anymore. Every Yubikey Series 5 supports FIDO2/WebAuthn, which is more secure than any type of one-time token and doesn’t require a cloud connection.

Btw. even for software and services that don’t support WebAuthn, TOTP would be the better and more secure choice.

Have something to say?

Join the community by quickly registering to participate in this discussion. We'd like to see you joining our great moo-community!

No one is typing