...
Open a browser window and navigate to your Microsoft Profile.
Sign in to your account.
Select Security Info in the left navigation or Update Info in the Security Info tile.
Select Add Method.
Select Authenticator app.
Make sure to select “I want to use a different authenticator app”.
Select Next.
You will now see a QR code displayed on the screen.
Insert your YubiKey and open Yubico Authenticator. Select Add or click on the three vertical dots in the top right corner. If the QR Code is visible, it will automatically fill in the fields required.
Select Add.
Double-click the Microsoft entry to copy the code to your clipboard. If successful, the message displays Code copied to clipboard. Note: if you selected Require Touch in the previous step you must touch your YubiKey to copy the code.
Back in your internet browser window paste the code in the box and click Next.
Select Done. You have now successfully registered your YubiKey to your account!
Use a YubiKey to sign in
It is simple to use your YubiKey as an OATH token to sign in to a Microsoft site, or site that has been federated to Azure AD. Generating the YubiKey OTP code to sign in can be done on any device where the Yubico Authenticator is installed (Linux, MacOS, Microsoft Windows, Android, and iOS).
...
Open the Yubico Authenticator application.
Insert the YubiKey into the device.
Sign into a Microsoft site with a username and password.
Double click the code in Yubico Authenticator application to copy the OTP code.
Paste the code into the prompt.
Select Verify to complete the sign in.
...