YubiKey


The YubiKey is a hardware authentication device manufactured by Yubico to protect access to computers, networks, and online services that supports one-time passwords, public-key cryptography, and authentication, and the Universal 2nd Factor (U2F) and FIDO2 protocols[1] developed by the FIDO Alliance. It allows users to securely log into their accounts by emitting one-time passwords or using a FIDO-based public/private key pair generated by the device.

Wikipedia


Setup

The YubiKey itself should work out of the box.

Usage

Tested:

Website Firefox (< 90.0.1) Chromium
fastmail.com 2FA working working
demo.yubico.com/webauthn-technical/registration working working
GitLab working working
   

Troubleshooting

Check if your YubiKey is recognized

$ su - root # login as root
$ dmesg|grep Yubi
[  997.077641] usb 1-4: Product: YubiKey FIDO
[  997.077642] usb 1-4: Manufacturer: Yubico
[  997.079001] hid-generic 0003:1050:0402.0006: hiddev0,hidraw3: USB HID v1.10 Device [Yubico YubiKey FIDO] on usb-0000:00:14.0-4/input0

Check if your browser is working

  1. Go to demo.yubico.com/webauthn-technical/registration
  2. Register your device

PantherX & (unofficial) GNU Guix Wiki.

Last update: 2023-02-03 19:33:34 +0000 | Apache-2.0

Inspired by the excellent Arch Linux Wiki