buzzkillb Posted March 11, 2020 Report Share Posted March 11, 2020 How to setup Yubikey 5 on Android phone and Windows Desktop guide, to replace Google Authenticator or Authy. Trying to think of ways this could be hacked, not quite sure all of the methods, but I think they all require physical possession of the yubikey itself and a password, on top of your login credentials. The idea behind this is hearing about sim swapping hacks and trying to get away from anything related to the phone carrier being hacked. Get yubikey somewhere, 2 or more of these as 1 will be a backup, probably official source so no tampering. I am using the Yubikey 5 for this example. https://www.yubico.com/products/ All authenticator downloads located here https://www.yubico.com/products/services-software/download/yubico-authenticator/ I don't have an iPhone so I can't test if the NFC part works on Apple products. On Android install the Yubico Authenticator App, now go to your site, lets pick https://www.southxchange.com/ . Go to user settings, Two-Factor Code Authentication and enable. When the QR shows up you want to scan this with your phone. Also write down the manual code. After the QT code is scanned in the phone will ask you to tap the yubikey NFC. Tap the yubikey to the phone. If you already have your backup yubikey, Click add and tap again. Now its stored on both yubikeys using QR code scanning. Enter the 6 digits to enable 2FA on your account. Download and install Windows Yubico Authenticator from the official link above. Plugin one of your yubikeys to your desktop, and your codes now pop up. Put passwords on both authenticator apps for extra security. For github, major exchanges, gmail, etc most of these offer to just add the key itself instead of using the 6 digit code. But this app is really handy for things like Discord. 1 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.