Feature Request: FIDO2/WebAuthn Manager - Managing 1FA/2FA devices and keys


A variety of services started to offer FIDO (U2F) and FIDO2/WebAuthn authentication.
NOTE: Please do not confuse WebAuthn with "using security keys" to sign in. This is only half of the story.

For 1FA this already includes:

  • microsoft.com
  • ebay.com
  • Okta
  • Yahoo! (Japan)

For 2FA this includes a rather long list of services, for example:

  • Dropbox.com
  • Facebook.com
  • GitHub.com
  • Google & YouTube (old U2F only)
  • Twitter.com
  • 1Password.com ;-)
  • Amazon AWS

Unforutnately, currently there is no product on the market which would allow to manage such credentails. As best pratices suggest to register multiple devices (which leads to some sort of authenticator bloat) it is very easy to lose track.

The need for a "FIDO2 manager"

Note: While the screenshot makes it look like, I'm only talking about security keys, I do not! This also includes laptops (Windows Hello with PIN/biometric, macOS with PIN/Touch ID) and smartphones (Android, iOS).

Managing interface on microsoft.com

Feature 1: Add a new category to 1Password for (manually) managing which device (laptop/phone/hardware security key) is registered on which website.

Feature 2: Add a field to traditional password credentials that allow to indicate which (list of) device(s)/key(s) have been registered with the service.

1Password Version: 7.7
Extension Version: 1.23
OS Version: macOS 11.2
Sync Type: 1Password.com

Leave a Comment

BoldItalicStrikethroughOrdered listUnordered list
Align leftAlign centerAlign rightToggle HTML viewToggle full pageToggle lights
Drop image/file