Tokens: YubiKeys and Duo Hardware Tokens

Owned by Chao Yang
Last updated: Mar 27, 2024
2 min read

The instructions below describes detailed information about tokens for 2FA: YubiKeys and Duo hardware tokens.

Instead of using a mobile device for two-factor authentication, there are two types of tokens users can instead use: a YubiKey or Duo hardware token.

YubiKeys

A YubiKey, shown below, is a personal device assigned to a user which allows them to authenticate with DUO (2 factor authentication). The YubiKeys will need to be plugged into the users device (ex. computer) and will provide a code to enter as their second password when prompted. Most computers interpret the key as a secondary keyboard device.

image-20240206-215408.png

Duo Hardware Token

A Duo hardware token Duo is small fob with a green button that generates passcodes for 2FA access. Each hardware token is tied to one user. The passcodes generated by a token can only be used by that user.

image-20240326-152202.png

 

Who can request a token?

UWaterloo employees with an active Workday record can request a token from IST via this form: https://uwaterloo.atlassian.net/servicedesk/customer/portal/2/group/413/create/1660

Students (undergrad and grad), co-op students, and contract staff, retirees and alumni can purchase a yubikey/U2F (Universal 2nd Factor) on their own via Amazon or another vendor. Once the yubikey/U2F token has been purchased, they can program it themselves:

Returning Tokens

When a faculty member/staff leaves, they need to return their token. Either return the token to one of the IST Service Desks in DC or DP, or mail it internally to Chao Yang at EC2 2108C.

Related Articles

Need help?

Contact the IST Service Desk online or 519-888-4567 ext. 44357.

Article feedback

If you’d like to share any feedback about this article, please let us know.