How to set up a YubiKey for Duo

Overview

Our Two-Step Login service can be configured to use a One-Time Password (OTP) instead of Duo Push, Duo Mobile, or a Duo token.

Information

Prerequisites

Instructions

  1. Install YubiKey Manager.
  2. Open YubiKey Manager.
  3. Insert the YubiKey into a USB port.
  4. Wait for the YubiKey Manager app to recognize the YubiKey. 
    • Once the YubiKey has been recognized, the app will display the device's serial number and name.
  5. Note the Serial Number.
  6. From the Applications menu at the top, select OTP.
  7. Select a configuration slot (1 is short tap, 2 is long tap), using the Configure button.
  8. Select Yubico OTP as the credential type.
  9. Click Next.
  10. Check Use serial for Public ID.
  11. Click Generate for both Private ID and Secret Key.
  12. Ensure you have noted the following values:
    • Serial Number
    • Private ID
    • Secret Key(s)
  13. Select Finish.
    • Leave the box for upload un-checked.
    • This will save the settings to your YubiKey.
  14. Exit YubiKey Manager.
  15. Navigate to the Two-Step Login service.
  16. Select Create a Ticket.
  17. Select YubiKey hardware token registration.
  18. Enter the Serial Number, Private ID and Secret Key(s) noted in Step 12 into the appropriate fields.
  19. Click Request.

You will be notified by email within six business hours with more information.

Create a Ticket Print Article

Related Articles (1)

Setting up an HOTP token for Duo
Instructions for setting up an HOTP token for two-step login.

Related Services / Offerings (1)

Two-Step Login (Duo) Support
Two-step login provides a second layer of security to any type of login, requiring extra information or a physical device in addition to the user's password.