Maybe I'm going about this the wrong way but how do people handle 2FA across multiple machines with multiple keys?
I have multiple desktops, laptop and several mobile devices that I often context switch across. I'd like to use 2FA without having to plug and unplug the key every time I want to switch devices.
You just buy a key for each and leave them permanently plugged in. Works best with the nano.
(This assumes that you're OK allowing physical access to the device to count as one of the factors in 2FA, instead of e.g. physical access to your keychain or wallet or messenger bag where you would otherwise keep the key.)
But I have one long password (30 characters) for logins and disk encryption, and everything else is 1Password/2FA. If you allow cookies, you won't get asked to use the key again. Most sites allow you to also use an authenticator app on your phone (some even force you to also set this up when you add a key). And I have GPG subkeys for every machine, so the key is only needed for the initial bootstrap. So this way, the amount of times you actually have to use the key is low. I'd say I use mine one a week, maybe less.
I have multiple desktops, laptop and several mobile devices that I often context switch across. I'd like to use 2FA without having to plug and unplug the key every time I want to switch devices.