Duo Keys

Initial Cost: varies based on token, see description for options
Renewal Cost: None
Expiration Date: None

Eligibility

Departments: Available
Faculty, Staff: Available
Students: Not available 

Special Note!

These are NOT picked up in the Software Center.  They must be obtained from the Identity Management Office (Teague 107).  [ Down the hall from the Software Center and Help Desk Central. ]  When picked up, the device will be associated with the user's login account.

 

Description


YubiKey 5 by Yubico

Cost: $37

The YubiKey 5 Series is comprised of four multi-protocol security keys, including two much anticipated new features: FIDO2 / WebAuthn and NFC (near field communication).

The YubiKey 5 Series is the industry’s first set of multi-protocol security keys to support FIDO2 / WebAuthn, the open authentication standard that Yubico helped to pioneer, along with Microsoft and others. All leading platforms and browsers have either made support or are engaged in this standards work, expanding authentication choices using authentication devices, such as a YubiKey, with or without a username and password. Each key in the YubiKey 5 series supports: FIDO2 / WebAuthn, FIDO U2F, PIV (smart card), OpenPGP, Yubico OTP, OATH-TOTP, OATH-HOTP, and challenge-response.

The YubiKey 5 identifies itself as an external keyboard, smart card and smart card reader, which eliminates the need for client software or drivers. Works on any PC or laptop.

To use the YubiKey 5 Key, insert the YubiKey in a USB port with the gold side up. Once the first authentication event has been completed, click the passcode field in the second authentication event prompt, then touch the gold button on the YubiKey to generate the secure login credentials and complete the second authentication event.

The device is designed to provide 5+ years of daily use.

 


 

YubiKey 5c by Yubico

Cost: $41

The YubiKey 5 Series is comprised of four multi-protocol security keys, including two much anticipated new features: FIDO2 / WebAuthn and NFC (near field communication).

The YubiKey 5 Series is the industry’s first set of multi-protocol security keys to support FIDO2 / WebAuthn, the open authentication standard that Yubico helped to pioneer, along with Microsoft and others. All leading platforms and browsers have either made support or are engaged in this standards work, expanding authentication choices using authentication devices, such as a YubiKey, with or without a username and password. Each key in the YubiKey 5 series supports: FIDO2 / WebAuthn, FIDO U2F, PIV (smart card), OpenPGP, Yubico OTP, OATH-TOTP, OATH-HOTP, and challenge-response.

The YubiKey 5C identifies itself as an external keyboard, smart card and smart card reader, which eliminates the need for client software or drivers. Works on any PC or laptop with a USB-C connector.

To use the YubiKey 5C Key, insert the YubiKey in a USB-C port. Once the first authentication event has been completed, click the passcode field in the second authentication event prompt, then touch the gold button on the YubiKey to generate the secure login credentials and complete the second authentication event.


 

FIDO U2F Security Key by Yubico

Cost: $20

FIDO U2F Security Keys use the Universal Second Factor (U2F) authentication protocol, which is an emerging open authentication standards initiative. Due to the fact that this is a new protocol, use of this token is limited to authentication on websites and platforms that have adopted it. Duo supports use of the U2F Security Key for web authentication via browsers that support the protocol, like Chrome version 38 and later. Works on any PC or laptop.

To use the U2F Security Key, insert the Security Key in a USB port with the gold side up. Once the first authentication event has been completed, touch the gold button on the Security Key to generate the secure login credentials and complete the second authentication event.

The device is designed to provide 5+ years of daily use.


 

Duo hardware token

 Cost: $20

Duo hardware tokens are available to faculty and staff employees for $20.

Hardware tokens are the most basic way of adding two factor authentication to a login account.

The token has a button and a display screen. The user just presses the button to get a new passcode, which they type into the prompt to complete the second authentication event.

Device will remain operational until the battery dies. There is no way to replace the battery, so once that occurs a new hardware token will need to be purchased. Expected life with daily use is 2 years.