Ah yes the physical dongles. I remember having a com port dongle. Not USB. It was a rather large (by todays standards) black box with the pins, and the holes the opposite side for passthrough. It also had a square window where you could see inside and check out the fancy holographic sticker that was on the actual ID chip. It was for som CAD software.I remember USB keys and you had to keep that on your keychain or something in order not to lose the key. That was nasty when you had more than a few. Everyone was attaching their keychain to their PC or laptop. Then the laptop would get stolen with the computer keys and your car keys... annoying. You lose your security, and your ability to drive to the bar to get pie eyed at the same time.
In network security, it's often explained as a triangle: Something you know, Something you have, and Something you are.
The RSI app just provides one of the steps in the triangle for VPN's, but there are other ways of doing it. Some other companies have their own VPN tech. But these don't protect apps... they protect networks and computers.
If you need app and website protection, you need a different set of tools: That's where OpenID and OAuth2 come in. Those are the passwords that you can store in a vault or on Microsoft, Google, etc. Your password isn't used to log into thee app... you need the password to get get a token that is stored temporarily, every time you log in - or refreshed if you're still logged in during the token's expiry. You need that token to access the service, otherwise you get a login screen. Good security dictates you need another factor ... something you have... so we most often use your cell phone to send you a key that you need to repeat in the login, but you can also use other ways.
Multi layer is a good thing, but man it can be a bitch to use. Worst of all, the new authentication requirements for online payments with credit cards are so randomly implemented in the EU, it's just a joke. There seems to be no rhyme or reason why or when I have to double authenticate with my banks phone app, and when it goes through without any extra steps. It seems like whenever I pay on ebay or Ali or amazon or Gpay, 99% of the time there is no second layer, payment just happens the moment I click pay. Whenever I try to pay my household bills via the only single website that allows for it in my country (and I almost aways do it at the exact same date and time), about 70 percent of the time I need to auth twice, especially on consecutive payments. It's just nonsense.