HelpDesk
sign in

YubiKey Set-Up Instructions for Duo (User)

Creation date: 11/23/2022 1:08 PM    Updated: 1/10/2023 1:17 PM   duo vpn
Print...



1.     Download YubiKey manager from https://www.yubico.com/support/download/yubikey-manager/

2.     Install YubiKey manager, then start the app with the YubiKey plugged in.

3.     Go to the “Interfaces” tab, and make sure that “OTP” is checked on the USB side (left side). Save interfaces.


a.     MAC ONLY, it will ask for additional permissions in a pop-up. Click the “Go to Security and Privacy” button and make sure that “YubiKey” is checked under “Input Monitoring”. After you check this, you’ll get a pop-up that the YubiKey app needs to restart, so click “quit and reopen”.


b.     If you did not receive a pop-up, Quit YubiKey Manager completely (YubiKey Manager > Quit YubiKey Manager, or press ⌘+Q on your keyboard with the YKM window in focus).

c.     Open System Preferences.

d.     Click Security & Privacy.

e.     Click the Privacy tab.

f.      Scroll down until you see Input Monitoring and select it.

g.     Click on the padlock in the lower-left corner and authenticate so you are able to make changes.

h.     Click the + button.

i.      In the window that appears, select Applications in the left column if it is not already selected, then scroll down to and select YubiKey Manager. Click Open.

j.      Make sure YubiKey Manager now appears in the list of apps with Input Monitoring permission with its box checked.


4.     Click the Applications tab, then “OTP”. Choose “configure” on one of the two choices (short touch or long touch).

5.     Choose “Yubico OTP”, then press Next.

6.     Check the “Use serial box” for the "Public ID" line.

7.     Click the Generate buttons to create a new "Private ID" and "Secret key". COPY THE PUBLIC ID, PRIVATE ID, AND SECRET KEY to a text document as you will need it for the next step, and will not be able to see them after this.

8.     Click “Finish”.

9.     Make a ticket for the Helpdesk asking to use your YubiKey for DUO. In the ticket include your Public ID, Private ID, and Secret Key from earlier. Do not send these in an email. Remember, you are sending a secret key so the Helpdesk ticketing system is more secure.

10.  The Helpdesk will add the YubiKey device to your DUO Account.

11.  Done!

Get help for this page