![]() ![]() The high level process is outlined in Microsoft docs here. There are several steps for the Microsoft Entra ID Administrator to follow outlined below. This is an alternative method for registering a YubiKey as an OATH-TOTP token and requires the YubiKey to be registered and activated by an Microsoft Entra ID Administrator then distributed to a user before use. You have now successfully registered your YubiKey to your account!Īdministrator registration (alternative method)Īn Microsoft Entra ID administrator can register and assign a YubiKey to users' accounts. Back in your internet browser window paste the code in the box and click Next.Note: if you selected Require Touch in the previous step you must touch your YubiKey to copy the code. If successful, the message displays Code copied to clipboard. Double-click the Microsoft entry to copy the code to your clipboard.If the QR Code is visible, it will automatically fill in the fields required. Select Add or click on the three vertical dots in the top right corner. Insert your YubiKey and open Yubico Authenticator.You will now see a QR code displayed on the screen.Select I want to use a different authenticator app.Select Security Info in the left navigation or Update Info in the Security Info tile.Open a browser window and navigate to.Yubico provides Yubico Authenticator for all major platforms (Windows, MacOS, Android, and iOS) to display the one time passcodes generated on the YubiKey. Since the YubiKey does not contain a battery it cannot track time and will require software to generate OATH-TOTP codes. Install Yubico Authenticator on your mobile device and/or workstation.The user account must be in Microsoft Entra ID.This is the recommended method for registering a YubiKey as an OATH-TOTP token. Authenticate using a YubiKey as an OATH-TOTP token.Ī user can self register a YubiKey with their Microsoft Entra ID Account.Register a YubiKey to a user account in Microsoft Entra ID as an OATH-TOTP token.The second method is for an Microsoft Entra ID administrator to register a YubiKey on behalf of the user. The recommended method is to have users self register their YubiKey to their account. There are two methods to use a YubiKey with Microsoft Entra ID MFA as an OATH-TOTP token. For an overview of Azure MFA see Microsoft’s How it works: Azure Multi-Factor Authentication. This document focuses on cloud-based Azure MFA implementations and not on the on-premises Entra ID MFA Server. These instructions show how to use YubiKeys with Entra ID Multi-Factor Authentication (Entra ID MFA). ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |