Hey everyone,
I just got myself a YubiKey and added it as a 2FA for my Account on my bitwarden_rs server. The FIDO U2F Setup was pretty simple. In Order to register the Yubikey as a YubiKey OTP, I had to generate a Client ID and a Secret Key as stated in the Wiki: Enabling Yubikey OTP authentication · dani-garcia/bitwarden_rs Wiki · GitHub
I did this successfully and could register and use the Yubikey without any problems afterwards. However I am a little confused. I used my own YubiKey to generate the Client ID and Secret Key. However I am concerned that, once my server gains more Users (lets say 200+ in my case), this will have some sort of negative impact on the usage or security of my key. Because as far as i understand, every time a user uses a YubiKey as 2FA on my Server, it will be authenticated using the generated Credentials for which I used my YubiKey.
I couldn´t really find any explanation on the way this process works, so if someone could clear me up on this, I would really appreciate it!