When the end user receives their newly provisioned YubiKey, they can activate it themselves by doing the following: The Delete YubiKey OTP Authenticator prompt appears.Įnd-user experience Enroll a YubiKey for the first time on a desktop browser Click Actions for the YubiKey authenticator and select Delete.It doesn't delete YubiKeys used in biometric mode. The confirmation message appears.ĭeleting the YubiKey authenticator also deletes all YubiKeys used for one-time password mode. Paste the serial number into the YubiKey serial number field and click Find.Click Actions for the YubiKey OTP authenticator and select Revoke YubiKey.When you find the YubiKey you want to revoke, select its serial number and copy it to the clipboard.On the Authenticators page, click Actions for the YubiKey authenticator and select YubiKey OTP Report.In addition, revoking a YubiKey removes its association with the user to whom it was assigned. Revoking a YubiKey allows you to decommission a single YubiKey, such as when it has been reported as lost or stolen. When you revoke a YubiKey, the status changes to REVOKED.Once the end user has enrolled their YubiKey, the status changes to ACTIVE.The status appears as UNASSIGNED until the end user enrolls their YubiKey.Review the status of each YubiKey in the Status column:.Use the criteria under the Filters pane to customize your search.On the Authenticators page, click Actions for the YubiKey OTP authenticator and select YubiKey OTP Report.View YubiKey user assignments and statusesĪfter you have added YubiKeys, you can check the YubiKey report to verify that they were added correctly and view the status of each YubiKey. The Authenticators page appears, and the YubiKey OTP authenticator appears in the list. Select the YubiKey Seed File that you created using the YubiKey Personalization Tool, and click Open.Click Browse beside the Upload YubiKey Seed File field.Click Add YubiKeys under the Add YubiKey OTP option.In the Admin Console, go to Security Authenticators.To activate this authenticator, you must add YubiKeys at the same time. Activate the YubiKey OTP authenticator and add YubiKeys If this information is missing, the YubiKeys may not work properly.Īfter you've configured the YubiKeys and uploaded the YubiKey OTP secrets file to Okta, you can distribute the YubiKeys to your end users. Only the YubiKey Personalization Tool can populate the public and private key information for each YubiKey. Don't create a YubiKey OTP secrets file manually.
0 kommentar(er)
