Yubikey validation to get admin rights inside application

We have some ignition vision applications where we use SSO to log in , this is done with accounts based on the machine, so the machine account is the windows user. Now we need to add some admin functionalities that should be based on a user logging in inside of the application.
The problem is that the operators only have Yubikeys, no account or password, is there any support for yubikey validation in ignition or do you have any suggestion on how to solve this?

Vision can call external applications and scripts (using ProcessBuilder if you want to return results), so first try to get an external validation to work. If you don't already have an executable that will interrogate the yubikey for you, you probably should start here:


I thought this was helpful, though it sounds like you are a Windows shop:


Also found this: