Table of Contents
Description
FIDO2 is a modern, secure way to log in to websites and apps without using passwords. Instead, it uses a physical security key, a small device you plug into your computer or tap with your phone, to prove who you are. FIDO2 is considered phishing resistant and doesn’t rely on less secure forms of authentication such as passwords or text message codes.
NOTE: We recommend using Microsoft Authenticator Passkeys, but we do allow for the registration and use of personal USB and NFC based FIDO2 compliant hardware keys.
Managing Your FIDO2 Hardware Key
Compatibility
We currently allow registration of any Yubikey 5 FIPS Series, Yubikey Bio Series, Yubikey Security Key Series, and Yubikey 5 Series as documented on the Yubico support website.
If you would like an alternate FIDO2 key vendor to be reviewed for registration, please contact ServiceDesk@ohio.edu and supply the key vendor, model, and AAGUID.
Registering Your Key
- Go to the Overview page at My Account and sign in if you haven't already done so.
- Under “Security info” select “UPDATE INFO”
- Select + Add sign-in method
- Choose “Security Key
- Complete two-factor authentication if prompted after selecting “Next”.
- Select the type of key according to your version (USB or NFC).
- Follow on-screen instructions to complete registration.
- Type your unique security key PIN into the Windows security box, and then select OK. You'll return to the Setting up your new sign-in method box.
- Name your security key.
Signing in With Your Key
When signing in to an Ohio University single sign-on supported website, you now will have the ability to sign-in using your hardware key.
Deleting Your Hardware Key
If you lose or no longer want to use a security key, you can delete the key from your “Security info” authentication methods section. In some cases, you may wish to reset the key entirely.
Get Help From OIT
Additional Resources