Good morning,
We use the Big-IP Edge VPN Client and during authentication, we have the Duo MFA inline splash page come up but when selecting Yubikey devices, the message comes up "Requires Chrome, Firefox, Safari, or Edge to use Security Keys". I see that this is part of a rundll process and looks like it is using Internet Explorer. I am curious if there is a way to configure the Big-IP client to use Chrome or Edge instead so that I can use the Yubikey. Weirdly enough I have seen it work in an older or newer version of the Big-IP client but I cant remember how I made it work. Any help would be appreciated!
A little research suggests that there may be a version of the F5 Big-IP Edge Client that supports Chrome or Edge via Duo's Universal vs. Traditional prompt. See url below. Can anyone verify this? Or do we need to modify the policy somehow to use Universal vs Traditional? As it is, our only choice for getting connected to VPN securely is via the Duo app because we don't allow phone call or sms. @Chris_Zhang ?
https://help.duo.com/s/article/7118?language=en_US
The release notes from 7.2.1 suggest that it shold work?
https://techdocs.f5.com/kb/en-us/products/big-ip_apm/releasenotes/related/relnote-edge-client-7-2-1....
Looks like I am using 7.2.2 yet it doesnt work...
I also tried modifying the IE compatibility keys for rundll32.exe and f5fpclientW.exe using 2af8 and 2af9 without any luck as referenced here and here:
https://help.duo.com/s/article/7620?language=en_US
https://techdocs.f5.com/kb/en-us/products/big-ip_apm/releasenotes/related/relnote-edge-client-7-2-3....
