Has anyone implemented a Yubico Yubikey to authenticate users login over the internet?
Since we have remote workers and we don’t want unauthorized users to login.
Best answer by Gabriel Michaud
Yes, you could also setup the security at the IIS level (or even one layer above -- VPN). Still, I think using single sign-on is a good practice, as it enables you to manage credentials and permissions centrally, and makes it easy to provision new accounts and disable others when an employee leaves. It also reduces strain on IT team, as users only need to work with one password to access all their applications.