Yubico OTP authentication

s5351413

I have hosted my mail server on AWS. I have now enabled Yubico OTP authentication, and everything is working fine.
However, when I tried to restrict my outbound rules on AWS, I blocked outbound traffic on port 443.
At this point, I noticed that Yubico OTP stopped working correctly.
I would like to know how I can configure a rule for port 443 to allow it to access the Yubico cloud properly.
Adding the IP address of api.yubico.com to the rule doesn’t seem to work.

Thanks

mlcwuser

I wouldn’t recommend using this proprietary and outdated technology anymore. Every Yubikey Series 5 supports FIDO2/WebAuthn, which is more secure than any type of one-time token and doesn’t require a cloud connection.

Btw. even for software and services that don’t support WebAuthn, TOTP would be the better and more secure choice.