Request: first-class support of physical security keys / don't require Authenticator App for 2FA/MFA

Update :) I'd still like to see first-class support for physical security devices (i.e. not require an authenticator app before registering a physical security key).

For sites that don't support physical keys at all, but do support Authenticator Apps (e.g., LinkedIn), I want to make a huge shout-out for 1Password's built-in https://blog.1password.com/totp-and-1password/ field. This will make things so much easier for me and my dad.

When you're setting up 2FA/MFA on sites that support Authenticator Apps, you just copy secret key into 1Password's "one time password" field (you can also use the built-in QR reader). 1Password then automatically creates the 6 digit TOTP codes when you need them.

I can't tell you how much easier this will be to use. In my comment above, this replaces Step 6 -- it should be automated so Dad doesn't have to open up any authenticator app at all, either on his phone or laptop.

Another update -- if using a YubiKey, I don't recommend reconfiguring slot 1 as I originally did. If you ever want to restore the proprietary Yubico OTP it's possible but not all sites will accept user-defined keys. Instead, in Step 3 above, I have Dad's slot 2 (long press) with the second have of his 1Password password. He types in an easy-to-remember portion then does the long press to. For example, if his 1Password is "helloworld#4lmnopqrstuv..." he types in "hellowrold" and does the long press. Slot 2 is configured to hold "#4lmnopqrstuv..."

It's been a journey. I always say "complexity is the enemy of security." It's taken a while for me to find the most secure path of least resistance. I hope this helps others.