Unsupported Factor Type: webauthn with YubiKey 5

[JacobWeyer]

Is your feature request related to a problem? Please describe. The yubikey 5 seems to have a factortype of webauthn via Okta

Describe the solution you'd like Ideally we'd just support this factorType. If someone with more knowledge can point me in the right direction with webauthn/yubikey stuff I'd be happy to make a PR/

Describe alternatives you've considered Not using Yubikey, but my company is starting to migrate towards these being more common.

Additional context

DEBUG - Setting AWS role to arn:aws:iam::065123698216:role/Role
DEBUG - Setting AWS partition to AwsPartition.AWS
INFO - No existing credentials found. Requesting new credentials.
INFO - App Link set as: https://company.okta.com/home/amazon_aws/0oGA2fw6hweX10H4ZO357/141
INFO - Authenticating to: company.okta.com
INFO - Authenticating as: user
Enter password: 
ERROR - Unsupported factorType: webauthn
MFA required, but no supported factors enrolled! sys.exiting.

removed some company info from the above

[darshan-mandhane]

I am also facing the issue with latest version of okta-awscli.

DEBUG - Setting AWS role to arn:aws:iam::304069618367:role/role INFO - Authenticating to: xxxxx.okta.com INFO - Authenticating as: xxxx@xxx.com Enter password: DEBUG - Setting MFA factor to OKTA INFO - App Link set as: https://xxxxx.okta.com/home/amazon_aws/0oa25auwpIym2eSGi4h6/272 ERROR - Unsupported factorType: webauthn MFA required, but no supported factors enrolled! Exiting.

@JacobWeyer - did you find any solution on this?

[kholia]

Hi Folks - I have https://github.com/okta-awscli/okta-awscli/pull/221 PR open now which adds support for FIDO2 YubiKey(s).

Can you please test this PR, and provide some feedback? Thanks!

CC @darshan-mandhane @JacobWeyer.