![]() ![]() ![]() Select Configuration Slot 1 (or Configuration Slot 2 if Slot 1 is already being used by another service). Wait for the Personalization Tool to recognize the YubiKey.Ĭlick Yubico OTP Mode in the main tool window, or Yubico OTP at the top-left.Ĭlick Quick on the "Program in Yubico OTP mode" page. There is no way to read your existing "Public Identity", "Private Identity", and "Secret Key" off the token once it has been written. Consider updating to the YubiKey Manager instead and following those instructions.Įvery time you open the Yubico OTP tab, it generates a new "Public Identity", "Private Identity", and "Secret Key", but these are not written to the token unless you actually click Write Configuration. The YubiKey Personalization Tool is no longer actively updated or maintained by Yubico. You may also want to save this information, along with the Public Identity, somewhere safe since you will need them if you use this YubiKey with other services in the future. You will need the Public ID (which is the token serial number if you checked the "Use serial" box earlier), Private ID, and Secret key to add the YubiKey to your Duo account. ![]() However, you may upload the configuration if you wish to also use YubiCloud OTP to authenticate to services other than Duo. Duo confirms the passcodes generated independently of Yubico's service. Enabling this uploads the new configuration to Yubico's YubiCloud OTP validation service. There is no need to check the Upload option. Keep Yubico OTP selected on the "Select Credential Type" screen and click Next.Ĭheck the Use serial box for "Public ID" (recommended).Ĭlick the Generate buttons to create a new "Private ID" and "Secret key".Ĭlick Finish to update the OTP information for the selected slot. You'll see the YubiKey model, firmware version, and serial number shown in the application.ĭetermine which OTP slot you'd like to configure and click the Configure button for that slot. Wait for the YubiKey Manager to recognize your YubiKey. ![]() To create or overwrite a YubiKey slot's configuration: There is no way to read your existing "Public ID" (if you did not use the device serial), "Private ID", and "Secret Key" information off the token once it has been written. When you open the Yubico OTP settings (under Applications), you may generate a new "Public ID", "Private ID", and/or "Secret Key", but these are not written to the token unless you actually click the Finish button. Using YubiKey Managerįirst, download and install the YubiKey Manager. You must upload the new credential to YubiCloud to continue using that service. If you are using your YubiKey with a service that integrates with Yubico's OTP service and you overwrite that factory configuration in the first slot, you cannot recover that configuration. You will no longer be able to use the YubiKey to log into other services unless you also update the stored secret information there. If you are already using this YubiKey with an existing service, the following steps will overwrite the stored secret for that service. When the YubiKey is shipped its first configuration slot is factory programmed for the "Works with YubiKey" YubiCloud OTP service and the second configuration slot is blank. The second slot is used if the button is touched between 2 and 5 seconds. The first slot is used to generate the passcode when the YubiKey is touched for between 0.3 and 1.5 seconds and released. Generate YubiKey ConfigurationĮach YubiKey with OTP support has two slots. Verify your YubiKey's capabilities at the Yubico site. This information applies to YubiKey tokens that support one-time password (OTP) functionality, like the YubiKey 5 series or YubiKey 4 series. If you do not know the current stored secret you can use the YubiKey Manager to reconfigure the YubiKey. To use a YubiKey hardware token you will need to enter its stored secret in your Duo Admin Panel. Learn how to configure YubiKey hardware tokens for OTP use with Duo for authentication. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |