What do you like best?
Although we primarily focus on enterprise customers, we have many SMBs. We have found that the Yubikey at $40 each is the cheapest and easiest to implement two-factor authentication (2FA) out there. It is very easy to implement and supports all major operating systems, many password vaults (lastpass for example), and the majority of Internet sites. It was trivial to implement on MAC OS, Windows, and in all browsers.
What do you dislike?
It only has two partitions. The first we use for a Smartcard and the second for one-time-passwords (OTP). It would be nice to have more, but it works fine for our customers and our needs at present. It also has a limit to the number of passwords you can store on it. Which would require more memory on the USB soft token. Again, nothing that has negatively impacted it.
Recommendations to others considering the product
There are many smaller companies making USB token based solutions. Most are clunky at best. Yubikey really has their act together with features and functionality. My daughter uses them at two hospitals she has been at. It gave her access to resources without knowing any passwords. This gave both hospitals a big win to eliminate the need for employees to know and use password based credentials. Healthcare is the greatest target for malicious or accidental insider attacks.
What business problems are you solving with the product? What benefits have you realized?
Since all breech reports for the past many years have shown that User ID and password have resulted in 100% of the breeches. It is critical that every organization implement two-factor authentication for VPN access, authenticating to their computing devices, web sites, and password vault.