they refused to use U2F/WebAuthn, instead they implemented Hyper but it's not compliant with our needs which is using a security key (USB) or smartcard. They provide exclusively the TOTP correctly