Hi, After YubiKey support was disabled in current, I decided to purchase a security key to authenticate on AWS. Unfortunately, strong authentication on AWS became mandatory, and I couldn't authenticate to my AWS account to shut down the only machine I have there. So I'm still paying for it, even though the machine isn't providing any service. It's just powered on.
Anyway, I purchased an OnlyKey security key because I saw a suggestion for this brand on undeadly. I even made an effort to find it in Europe because it wasn't available on Amazon (I believe it is now). However, despite the recommendation, it doesn't seem to work for pairing with an AWS account using the FIDO protocol. The following are the logs: Dec 29 14:21:29 /bsd: uhidev3 at uhub0 port 2 configuration 1 interface 0 "CRYPTOTRUST ONLYKEY" rev 2.00/1.00 addr 6 Dec 29 14:21:29 /bsd: uhidev3: iclass 3/1 Dec 29 14:21:29 /bsd: ukbd4 at uhidev3: 8 variable keys, 6 key codes Dec 29 14:21:29 /bsd: wskbd5 at ukbd4 mux 1 Dec 29 14:21:29 /bsd: wskbd5: connecting to wsdisplay0 Dec 29 14:21:29 /bsd: uhidev4 at uhub0 port 2 configuration 1 interface 1 "CRYPTOTRUST ONLYKEY" rev 2.00/1.00 addr 6 Dec 29 14:21:29 /bsd: uhidev4: iclass 3/0 Dec 29 14:21:29 /bsd: fido0 at uhidev4: input=64, output=64, feature=0 Dec 29 14:21:29 /bsd: uhidev5 at uhub0 port 2 configuration 1 interface 2 "CRYPTOTRUST ONLYKEY" rev 2.00/1.00 addr 6 Dec 29 14:21:29 /bsd: uhidev5: iclass 3/0 Dec 29 14:21:29 /bsd: uhid3 at uhidev5: input=64, output=64, feature=0 and below is what Chromium responds if I try to use it: [2398:4653927621336:1229/144223.510710:ERROR:components/device_event_log/device_event_log_impl.cc:198] [14:42:23.498] HID: hid_service_fido.cc:87 no response /dev/fido/0 and this is the log from usbdevs Bus 000 Device 006: ID 1d50:60fc OpenMoko, Inc. According to ChatGPT, OnlyKey doesn't have a standard FIDO implementation but a custom/proprietary one, which appears to be the source of the problems. Permissions seem correct... I'm not sure what else to say. I've tried using yk manager to detect it, but obviously, since it's not a YubiKey, it doesn't see it. What do you recommend I do? If it's not compatible, please remove that comment on undeadly.org (placed by an unknown person) that misleads people. Thanks so much. Have a nice day.
