I’m not sure if this is a Duo issue, a Yubico issue, or a Microsoft issue, or all 3.
We have Office 365 (Azure + On Prem hybrid) protected using Conditional Access policies to use Duo. Our new users are issued with a Yubikey 5 NFC or Yubikey 5C (if on Mac), which is great except it doesn’t seem to be a recognized device by Office applications (Outlook, Teams, any of the Office suite).
When setting up the devices, we have to use Bypass Codes to initially setup Office, or if the password is changed post-initial setup before the users have registered another device like a phone.
This is somewhat embarrassing and I also don’t understand why the apps don’t work. I’ve tested the Yubikey through Edge using Yubikeys U2F and OTP tests, and the key is acknowledged and seems to work just fine. It’s the apps themselves that don’t seem to like it.
Is anybody else finding this?