diff --git a/modules/home/yubikey.nix b/modules/home/yubikey.nix
new file mode 100644
index 0000000..8908c68
--- /dev/null
+++ b/modules/home/yubikey.nix
@@ -0,0 +1,25 @@
+{ pkgs, ...}:
+
+{
+  services.udev.packages = [ pkgs.yubikey-personalization ];
+
+  # FIXME Don't forget to create an authorization mapping file for your user (https://nixos.wiki/wiki/Yubikey#pam_u2f)
+  security.pam = {
+    u2f = {
+      enable = true;
+      cue = true;
+      control = "sufficient";
+    };
+
+    services = {
+      login.u2fAuth = true;
+      greetd.u2fAuth = true;
+      sudo.u2fAuth = true;
+      hyprlock.u2fAuth = true;
+    };
+  };
+
+  environment.systemPackages = with pkgs; [
+    yubikey-manager
+  ];
+}