Just browsing and came across this piece of kit which looked interesting. Any views on this product? https://www.bleepingcomputer.com/ne...-microsoft-accounts-with-fido2-security-keys/
I wouldn't want to use such a USB key without any passwords, because then it's not 2FA anymore, what are these guys thinking?
Yes, the authentication is by design a single factor. (and if you must enter a password, it wouldn't be password-less anymore...) But you can setup a PIN for your security key. Now someone (1) must be in posession of your security key (2) and in addition must know the PIN to be able to login to your Microsoft Account. As long as you have the security key and know the PIN, you are the only one who can login to your account.