We have learned a lot from smart viewers, so appreciate the informed feedback. I was confused about the operation of slot 1 for OTP. The OTP has nothing to do with FIDO U2F or FIDO2. The OTP (Onetime password generated) is used for Yubico’s cloud-based validation service (www.yubico.com/resources/glossary/yubico-otp/). It is not related to FIDO U2F or FIDO2. My confusion stemmed from the fact that BitWarden allows you to also use the OTP key function for vault authentication. This is why I thought it was related to FIDO U2F, but it is not. BitWarden also has Web Auth FIDO2 section for registering the keys, but they are still requiring a password. The FIDO2 spec allows for passwordless credentialing. Microsoft is one of the few service providers that have truly implemented this. All I have to do is authenticate the key with pin or biometrics. The rest of the services we tried (Yahoo/Gmail) are implementing FIDO U2F, because they require a password and the key for credentialing.
Man you did a great job. Such poorly structured and recursive information documentation is literally unjustifiable. Not at all clear on the real functioning with all the interfaces and applications of the keys. Most of the conent creators that trying to explain the power of the authenticator app probably didn't know ther is just only 32 slot for it and in my persona opinion this aspect greatly limits the potential of these keys
@mattiavadala7870 you made our day and keep us going! Much appreciate your feedback. We've tried hard with our channel content to help others understand fully when we present something. We pride ourselves on trying to completely explain and take care of the people using this tech. Agree about the 32 sloth TOTP limitation. For FIDO U2F there is no limit though. Please consider sharing our content with friends & colleagues. This supports us in helping others. If you are using windows please view/share our bitlocker video ruclips.net/video/qnqnIuGEnH0/видео.html. Thank you for commenting & subscribing!
You're de only one that explain the differences between all the stuff, no body on other videos i saw explain this very well as you. You got a new subscriber. Thank you
That means a lot....thankful for your feedback. Please let us know if you need any help. This is why we started the channel. Hope you gave the video a thumbs up. What accounts are you using the yubikey on?
@@CyberMedics moreso just figuring out a way to reconfigure my key to lock an offline password vault, everywhere else I looked basically told me to compile random files from GitHub with no true starting point in sight. Never knew there were official and simple to download yubikey programs for my purpose
Thank you for the feedback. It is confusing. Please let us know if you have any questions or need any help. Thanks for commenting. Hope you will like the video.
Wanted to alert you to a new video we did. ruclips.net/video/imgXU5ahTA8/видео.html. This one of our best to date and covers everything to know about securing Authentication App TOTP codes. I have a favor to ask, if you don't mind. We are trying to help people protect accounts. Would you please help us promote this, by posting on social media and recommending it to your friends & colleagues. This will prevent a lot of potential heartache. Thank you! ruclips.net/video/imgXU5ahTA8/видео.html
Thanks for the informative demo. It helps understand a little bit more. The differences between the applications and Slot 1 vs Slot 2, what to use and where is still all pretty confusing.
Normally you use slot on for FIDO authentication and slot 2 would be used for things like static password. Let us know if you need any help. Thanks for commenting and subscribing!
Thanks for the video; helps me understanding yubikey management! Also, thanks for the different hashing mechanism that each provider implement - it was confusing but I think it is clearer (tl;dr, just follow the instructions provided by YubiKey) and you'll be alright....right? Also, do you need to change the PIN / PUK? or just leave it as default?
Thanks for the questions. You should set the FIDO2 PIN. This pin may be be used by the services you authenticate with. You don't need to worry about the PIV (PIN/PUK). These are usually used by companies to mange access to their enterprise. Let us know if you need any help. Welcome aboard.
PLEASE SIR MAKE ONE MORE VIDEO RELATED TO YUBI KEY MANAGER AND SETTINGS ON DEEPER LEVEL THEN THIS AND MAKE IT EASY FOR NORMAL PEOPLE TO UNDERSTAND , THANK YOU SIR
Good suggestion. Can you tell us specifically what you would like to see more further explained? Also tell us what parts of the video you would like to see simplified
@@CyberMedics i can't find even one video that does a walkthrough of password manager/yubikey authenticator/for us total beginners, my yubikey has sat on my desk for the last week because I can't find any video instructions, example - what has to be set up before you can go ahead and use it? - and what is a good idea to set up while you are in there, thank you
@@CyberMedics I would like to have printed instructions for beginners how to set up everything safest youbi key with pass key . With If something does not work how to fix and start over . Very scared if got locked out of a account and not able to gain account access .
Thank you for this video. I have been trying to figure out my Yubikey for over 2+ years now! you have helped me a LOT. Here is a suggestion for a new video showing the process of how to use the Yubikey with gnupgp4win. this is a subject that is not covered clearly on RUclips. thanks
Great to hear! I've put a lot of time and effort in detailing all the configurations. It is truly wonderful to receive the feedback! Value the suggestion on gnug4win. Thanks for commenting & subscribing. Please check out our other content. Let us know if you have any questions.
I have the yubikeys 5 nfc. I gather this video geared for ms/windows an did hear anything regarding android. 1. One must introduce use of yubi on NEW pc on FIRST ligin to ms account? 2. This yubi works with ANY authentucatir app ? Do you use the yubico authenticatir app or bitwarden? Does Google authenticator app work with yubi on pc ir android? Thanks
Lots of good questions here. Thank you for the feedback. We probably should handle them one at a time first regarding the operating system compatibility with the security keys, the keys are used for authentication to a particular account on the operating system. For example, to use the key for windows you need a Microsoft account and you need to make that account passwordless with a security key. For android the Gmail account is tied to the device, Gmail can be authenticated with a security key. I’d like to make sure this is clear before we move onto your other questions. Thanks again for supporting our channel.
Let say I have PC ms acct and a local acct an the PC is 1 year. How would you retrofit the Yubikey key long after logging into the ms accounts for the very first time? Google recommends there use of their authenticator app but thought us not so quick as I think I would feel more secure with the secret residing on my Yubikey...sounds like you use bitwarden...but does the authenticator app really matter? I believe more people would onboard with yubikeys if the steps were documented somewhere to follow. Financial stuff first at minimum. I have a new android and Lenovo ready to apply the Yubikey keys before use but where are the layman's steps to get it done. Would it on my older PC as well if possible.
@@sjzepher Unfortunately the keys are great security, but not all service providers have implemented them. We are happy to help here on the channel for free. IF you need more individualized help, we offer a paid service for account hardening. Email us help@cybermedics.org and reference your youtube comments. Question, "How would you retrofit the Yubikey key long after logging into the ms accounts for the very first time? " You have to make the MS account passwordless: ruclips.net/video/0inIxNuZ638/видео.htmlsi=x87SOKsxu-DWkPtA
Is anything speaking against using Static Password on Slot 1? Would this somehow affect the FIDO functionality on Slot1? How does Static password work on NFC?
Thanks for commenting & subscribing. You can use static password on slot 2 long press functionality. Use slot 1 for short press fido u2f. They can be used in reverse order also. They are separate functions and configured using the Yubikey SW. You cannot use static password with NFC. It is a physical plug in and "Touch" contact function. Sharing our content and giving it a "Thumbs up" supports us helping others with technology. Please check out our other content and share on social media.
Its a great day, how are you, thank you for keep us updated on your daily adventures and your daily activities, your friend is here for full support. Keep safe and stay connected.,
You are confusing OTP and FIDO2. they are two different things, in the case of yahoo you are using FIDO2 thats why you can login even if you are change the OTP and same goes for bitwarden too ( you reset the FIDO not ther OTP so bitwarden let you login )
We have learned a lot from smart viewers, so appreciate the informed feedback. You are correct that I was confused about the operation of slot 1 for OTP. The OTP has nothing to do with FIDO U2F or FIDO2. The OTP (Onetime password generated) is used for Yubico’s cloud-based validation service (www.yubico.com/resources/glossary/yubico-otp/). As you correctly pointed out, it is not related to FIDO U2F or FIDO2. My confusion stemmed from the fact that BitWarden allows you to also use the OTP key function for vault authentication. This is why I thought it was related to FIDO U2F, but it is not. BitWarden also has Web Auth FIDO2 section for registering the keys, but they are still requiring a password. The FIDO2 spec allows for passwordless credentialing. Microsoft is one of the few service providers that have truly implemented this. All I have to do is authenticate the key with pin or biometrics. The rest of the services we tried (Yahoo/Gmail) are implementing FIDO U2F, because they require a password and the key for credentialing. Thanks for keeping us straight. Appreciate you subscribing & commenting!
The Hardware security key is definitely safer than the authentication app. But I believe the authentication app is much safer than second factor authentication with the cell number.
No. Most of this does not apply for using a yubikey either as a strong second factor or as a passkey. All you need to do is add the backup key to the account just like you did the primary key. It will usually require you to have a pin on the key. So the part of the video that dresses adding a pen for second Factor Authentication applies.
Great video 👍 I have a question about the static password, as the key is a HID and act like a Keyboard. Potentially the password could be caught by a keylogger right ?
Suppose that is a possibility. Hope you liked the video and subscribed. This supports our efforts in helping others with technology. Please check out our double blind video for passwords https: //ruclips.net/video/pQ7ETiPfmqk/видео.html great feedback thanks for commenting
@@CyberMedics wow That's really smart of you to add yubikey's password to your saved password in password manager ! Great job you won a subscriber 😁 Cya
@@niaxx8311 Thank you for the positive feedback. Victory is one subscriber at a time. :) We are trying to help people with their online digital security. The double blind video was great advice if you want to be super secure with passwords. Because we are a small channel these videos don't get much traction. Every "Like" and "Subscribe" helps us out. Please consider recommending the channel to your friends & family and ask them to Like & Subscribe. Thanks for your support! Every comment is also important!
@@niaxx8311 Wanted to alert you to a new video we did. ruclips.net/video/imgXU5ahTA8/видео.html. This one of our best to date and covers everything to know about securing Authentication App TOTP codes. I have a favor to ask, if you don't mind. We are trying to help people protect accounts. Would you please help us promote this, by posting on social media and recommending it to your friends & colleagues. This will prevent a lot of potential heartache. Thank you! ruclips.net/video/imgXU5ahTA8/видео.html
I'm sure glad I watched this before I wasted $100 on these things. I wondered why everyone wasn't using them? I get it now! These are for IT professionals ONLY. A typical web surfer like me, is never going to get that thing to work.
Appreciate the content, thanks! I bought my two yubikeys. A question I have is can I use my yubikey as a static password AND 2FA at the same time so to speak. IAW, login with the static pasword then use the key for my Yubicon autheniticator 2FA?
Absolutely! You just have to practice "long press" so you generate the static password correctly. Use a txt application, plug in the yubikey and long press to see the password generated in the txt file. You should also consider backing up all your authenticator codes. See our video on doing this: ruclips.net/video/imgXU5ahTA8/видео.html May I ask a favor? Please consider sharing our content with family, friends, coworkers & on social media. This will promote our efforts to help others. And if you know anyone who has a window computer they need to watch this video before they lose all their data: ruclips.net/video/qnqnIuGEnH0/видео.html Thank you for commenting & subscribing. Let us know your tech interest and we'll share some additional videos that may be of interest.
@@CyberMedics appreciate the timely responses. As I watch your video again, I see that with each application, you're reconfiguring slot 2. To me, it suggests your overwrting the previous applications configuration. Yes? If I configure my key slot 2 with a static password then reconfigure it again w/HOTP, for example, I will lose my static password. Seems like the key is limited to just one application then. What am I missing here?
Can you just 2fa your 1password accont and not 2fa all your individual accounts. I'm thinking of going double blind on 1password with yubikey. I gotta think doube blind is secure without individual 2fa. Look forward to any input.
Not that familiar with 1Password, but would think it is similar to BitWarden. See our video on 2FA Bitwarden: ruclips.net/video/f3pY9LJAHPk/видео.html. Another way to do 2FA is with a Google voice account secured with a yubikey. That way the codes are sent securely to your phone, bypassing the insecure cell network. Not sure why you wouldn't want 2FA on all your account. Please elaborate on this. Please share how you would accomplish double blind in 1Password. One suggestion is to put the base password of all the accounts in the password manager, then program slot 2 of the Yubikey long press with a passphrase. You could also add a password to the Yubikey. In order for someone to get into your accounts the have to: 1) break into the vault, 2) physically possess your key, & 3) know the Yubikey password. Pretty secure. What are your thoughts? Thanks for the informed/significant comment & hope you subscribed?
@@CyberMedics ... Thanks for that. I'll have to research these things you say. I'm certainly planning to maintain 2fa on my financials. I just wasn't sure account based 2fa was needed on top of a hardware protected password manager. Especially if I use double blind passwords. Double blind is available within this particular password manager. In that case the full password is only known to the website. It's as you describe with an appended or prepended code. I'm just getting wise to all of this. I've been remembering all my sensitive passwords with regular changes for years and I'm not getting any younger. Thank you!
@@undaware Let us know if you need any help. I've implemented 2FA on every account. Think of the havoc someone could cause you if they even just got into a social media account. Any account breached gives them inside information on you and potentially positions them to cause you harm. It is a shame we have to be this paranoid, but it is our reality now. Based on your feedback I'm doing a new video covering double blind password using the yubikey & PW manager. Do what you can to get the word out about the channel. We are focused on helping end users with technology...specifically those technologies that can enhance your personal security at home & online. Don't use your cell phone #for 2FA. It is ok to use a Google Voice # especially if it is secured with a strong 2FA method (hardware key or authentication app).
That is a smart implementation. I'm sure you are aware the blue security key is not compatible with authenticator apps. Thanks for watching and subscribing.
@@CyberMedics I don't get the Nano. If you leave it plugged into a laptop and you walk away with your Starbucks in hand and forget to take your laptop with you, not only do they have the laptop but some non-trivial subset of your accounts are compromised. I love the idea of it not sticking out, but not of it living in the laptop.
Can you look at this video on Yubikey (see below)- it shows much more advanced options on the Yubikey and what is important to change (i.e. default pins on the key that are put in by the mfg ! - like "admin" on wifi routers years ago. Can you explain better what the presenter is showing in this youtube - ruclips.net/video/rNtzmgt0Al4/видео.html I am sure you will get a lot of hits on that video as it looks like the above video is one of the few covering the PIN changes and key info that should be backed up in a PW manager. Consider it.
It looks like most the things in that video (not covered in ours) are related to enterprise management functions, which are not required for end user FIDO functionality. We will take a deeper look at it. Thanks for subscribing & commenting!
Thank you for the comment and constructive criticism. Sure it is appropriate, but would be more constructive to point out the specific error. Hopefully your here to help others…
If you read the pinned comment and video description you would see that another subscriber had pointed out the error. We went into detail about the confusion. Please try to be constructive when commenting on RUclips videos.
We have learned a lot from smart viewers, so appreciate the informed feedback. I was confused about the operation of slot 1 for OTP.
The OTP has nothing to do with FIDO U2F or FIDO2. The OTP (Onetime password generated) is used for Yubico’s cloud-based validation service (www.yubico.com/resources/glossary/yubico-otp/). It is not related to FIDO U2F or FIDO2. My confusion stemmed from the fact that BitWarden allows you to also use the OTP key function for vault authentication. This is why I thought it was related to FIDO U2F, but it is not. BitWarden also has Web Auth FIDO2 section for registering the keys, but they are still requiring a password.
The FIDO2 spec allows for passwordless credentialing. Microsoft is one of the few service providers that have truly implemented this. All I have to do is authenticate the key with pin or biometrics. The rest of the services we tried (Yahoo/Gmail) are implementing FIDO U2F, because they require a password and the key for credentialing.
Man you did a great job. Such poorly structured and recursive information documentation is literally unjustifiable. Not at all clear on the real functioning with all the interfaces and applications of the keys. Most of the conent creators that trying to explain the power of the authenticator app probably didn't know ther is just only 32 slot for it and in my persona opinion this aspect greatly limits the potential of these keys
@mattiavadala7870 you made our day and keep us going! Much appreciate your feedback. We've tried hard with our channel content to help others understand fully when we present something. We pride ourselves on trying to completely explain and take care of the people using this tech. Agree about the 32 sloth TOTP limitation. For FIDO U2F there is no limit though. Please consider sharing our content with friends & colleagues. This supports us in helping others. If you are using windows please view/share our bitlocker video ruclips.net/video/qnqnIuGEnH0/видео.html. Thank you for commenting & subscribing!
You're de only one that explain the differences between all the stuff, no body on other videos i saw explain this very well as you. You got a new subscriber. Thank you
Thank you for the kind words. Happy to have you aboard! Appreciate your support by commenting and giving the video a thumbs up.
valuable video! nobody explain that, only you!
That means a lot....thankful for your feedback. Please let us know if you need any help. This is why we started the channel. Hope you gave the video a thumbs up. What accounts are you using the yubikey on?
Thanks for covering this, i thought I was going to just forget about my Yubikey until I finally searched for a video on it.
Thanks for the comment & subscribing. Glad the video helped. What accounts are you planning to secure with the Yubikey?
@@CyberMedics moreso just figuring out a way to reconfigure my key to lock an offline password vault, everywhere else I looked basically told me to compile random files from GitHub with no true starting point in sight. Never knew there were official and simple to download yubikey programs for my purpose
@@marshythemellow3892 Thanks for letting us know. What offline password vault are you using? Glad it helped.
I was seriously confused as to why different providers react differently. Very helpful vid!
Thank you for the feedback. It is confusing. Please let us know if you have any questions or need any help. Thanks for commenting. Hope you will like the video.
Wanted to alert you to a new video we did. ruclips.net/video/imgXU5ahTA8/видео.html. This one of our best to date and covers everything to know about securing Authentication App TOTP codes. I have a favor to ask, if you don't mind. We are trying to help people protect accounts. Would you please help us promote this, by posting on social media and recommending it to your friends & colleagues. This will prevent a lot of potential heartache. Thank you! ruclips.net/video/imgXU5ahTA8/видео.html
thanks so much for your help.
Thank you for the positive feedback and supporting the channel. Please let us know if you need help
Thanks for the informative demo. It helps understand a little bit more. The differences between the applications and Slot 1 vs Slot 2, what to use and where is still all pretty confusing.
Normally you use slot on for FIDO authentication and slot 2 would be used for things like static password. Let us know if you need any help. Thanks for commenting and subscribing!
thanks for sharing...simpleng maybahay
Very informative, Thank you for sharing
Glad it was helpful! Thanks for commenting & subscribing.
Thank you for sharing this video ..
My pleasure Thanks for commenting and subscribing!
Thanks for the video; helps me understanding yubikey management!
Also, thanks for the different hashing mechanism that each provider implement - it was confusing but I think it is clearer (tl;dr, just follow the instructions provided by YubiKey) and you'll be alright....right?
Also, do you need to change the PIN / PUK? or just leave it as default?
Thanks for the questions. You should set the FIDO2 PIN. This pin may be be used by the services you authenticate with. You don't need to worry about the PIV (PIN/PUK). These are usually used by companies to mange access to their enterprise. Let us know if you need any help. Welcome aboard.
Thanks for sharing
PLEASE SIR MAKE ONE MORE VIDEO RELATED TO YUBI KEY MANAGER AND SETTINGS ON DEEPER LEVEL THEN THIS AND MAKE IT EASY FOR NORMAL PEOPLE TO UNDERSTAND , THANK YOU SIR
Good suggestion. Can you tell us specifically what you would like to see more further explained? Also tell us what parts of the video you would like to see simplified
@@CyberMedics i can't find even one video that does a walkthrough of password manager/yubikey authenticator/for us total beginners, my yubikey has sat on my desk for the last week because I can't find any video instructions, example - what has to be set up before you can go ahead and use it? - and what is a good idea to set up while you are in there, thank you
@@CyberMedics I would like to have printed instructions for beginners how to set up everything safest youbi key with pass key . With If something does not work how to fix and start over . Very scared if got locked out of a account and not able to gain account access .
@@chrisichris1000 We do provide one-on-one video sessions. Contact us at help@cybermedics.org if you want to schedule something.
@@chrisichris1000 We do provide one-on-one video sessions. Contact us at help@cybermedics.org if you want to schedule something.
Thank you for this video. I have been trying to figure out my Yubikey for over 2+ years now! you have helped me a LOT.
Here is a suggestion for a new video showing the process of how to use the Yubikey with gnupgp4win. this is a subject that is not covered clearly on RUclips.
thanks
Great to hear! I've put a lot of time and effort in detailing all the configurations. It is truly wonderful to receive the feedback! Value the suggestion on gnug4win. Thanks for commenting & subscribing. Please check out our other content. Let us know if you have any questions.
I have the yubikeys 5 nfc. I gather this video geared for ms/windows an did hear anything regarding android. 1. One must introduce use of yubi on NEW pc on FIRST ligin to ms account? 2. This yubi works with ANY authentucatir app ? Do you use the yubico authenticatir app or bitwarden? Does Google authenticator app work with yubi on pc ir android? Thanks
Lots of good questions here. Thank you for the feedback. We probably should handle them one at a time first regarding the operating system compatibility with the security keys, the keys are used for authentication to a particular account on the operating system. For example, to use the key for windows you need a Microsoft account and you need to make that account passwordless with a security key. For android the Gmail account is tied to the device, Gmail can be authenticated with a security key. I’d like to make sure this is clear before we move onto your other questions. Thanks again for supporting our channel.
Let say I have PC ms acct and a local acct an the PC is 1 year. How would you retrofit the Yubikey key long after logging into the ms accounts for the very first time? Google recommends there use of their authenticator app but thought us not so quick as I think I would feel more secure with the secret residing on my Yubikey...sounds like you use bitwarden...but does the authenticator app really matter? I believe more people would onboard with yubikeys if the steps were documented somewhere to follow. Financial stuff first at minimum. I have a new android and Lenovo ready to apply the Yubikey keys before use but where are the layman's steps to get it done. Would it on my older PC as well if possible.
I have window 11 on new PC and windows 10 on older PC; new Samsung a54 android phone .
@@sjzepher Are you using a MS account to log onto the computers?
@@sjzepher Unfortunately the keys are great security, but not all service providers have implemented them. We are happy to help here on the channel for free. IF you need more individualized help, we offer a paid service for account hardening. Email us help@cybermedics.org and reference your youtube comments.
Question, "How would you retrofit the Yubikey key long after logging into the ms accounts for the very first time? " You have to make the MS account passwordless: ruclips.net/video/0inIxNuZ638/видео.htmlsi=x87SOKsxu-DWkPtA
Is anything speaking against using Static Password on Slot 1? Would this somehow affect the FIDO functionality on Slot1? How does Static password work on NFC?
Thanks for commenting & subscribing. You can use static password on slot 2 long press functionality. Use slot 1 for short press fido u2f. They can be used in reverse order also. They are separate functions and configured using the Yubikey SW. You cannot use static password with NFC. It is a physical plug in and "Touch" contact function. Sharing our content and giving it a "Thumbs up" supports us helping others with technology. Please check out our other content and share on social media.
Did you have any other questions you can you can help with?
Its a great day, how are you, thank you for keep us updated on your daily adventures and your daily activities, your friend is here for full support. Keep safe and stay connected.,
You are confusing OTP and FIDO2. they are two different things, in the case of yahoo you are using FIDO2 thats why you can login even if you are change the OTP and same goes for bitwarden too ( you reset the FIDO not ther OTP so bitwarden let you login )
We have learned a lot from smart viewers, so appreciate the informed feedback. You are correct that I was confused about the operation of slot 1 for OTP.
The OTP has nothing to do with FIDO U2F or FIDO2. The OTP (Onetime password generated) is used for Yubico’s cloud-based validation service (www.yubico.com/resources/glossary/yubico-otp/). As you correctly pointed out, it is not related to FIDO U2F or FIDO2. My confusion stemmed from the fact that BitWarden allows you to also use the OTP key function for vault authentication. This is why I thought it was related to FIDO U2F, but it is not. BitWarden also has Web Auth FIDO2 section for registering the keys, but they are still requiring a password.
The FIDO2 spec allows for passwordless credentialing. Microsoft is one of the few service providers that have truly implemented this. All I have to do is authenticate the key with pin or biometrics. The rest of the services we tried (Yahoo/Gmail) are implementing FIDO U2F, because they require a password and the key for credentialing.
Thanks for keeping us straight. Appreciate you subscribing & commenting!
I think if you want the safest option, not using authenticator app is best. That's the way most will try to hack in.
The Hardware security key is definitely safer than the authentication app. But I believe the authentication app is much safer than second factor authentication with the cell number.
EXUSE ME SIR WILL I NEED TO DO ALL THIS FOR A BACKUP YUBI KEY TO THANKS
No. Most of this does not apply for using a yubikey either as a strong second factor or as a passkey. All you need to do is add the backup key to the account just like you did the primary key. It will usually require you to have a pin on the key. So the part of the video that dresses adding a pen for second Factor Authentication applies.
See TS 14:49 for pin setup. Let us know if you have any questions we'll be glad to help.
so i can/should uncheck PIV via the interface section if i dont use it?
Thanks for commenting & subscribing. Either way...it will have no effect if you are only using the HW Key for 2FA U2F or WebAuthn authentication.
How could you access your account of you only have one key and it breaks or lost ?
You should have at least one backup key. Thanks for commenting. Let us know if you have any more questions or need help
Great video 👍 I have a question about the static password, as the key is a HID and act like a Keyboard.
Potentially the password could be caught by a keylogger right ?
Suppose that is a possibility. Hope you liked the video and subscribed. This supports our efforts in helping others with technology. Please check out our double blind video for passwords https: //ruclips.net/video/pQ7ETiPfmqk/видео.html great feedback thanks for commenting
@@CyberMedics wow That's really smart of you to add yubikey's password to your saved password in password manager ! Great job you won a subscriber 😁
Cya
@@niaxx8311 Thank you for the positive feedback. Victory is one subscriber at a time. :) We are trying to help people with their online digital security. The double blind video was great advice if you want to be super secure with passwords. Because we are a small channel these videos don't get much traction. Every "Like" and "Subscribe" helps us out. Please consider recommending the channel to your friends & family and ask them to Like & Subscribe. Thanks for your support! Every comment is also important!
@@niaxx8311 Wanted to alert you to a new video we did. ruclips.net/video/imgXU5ahTA8/видео.html. This one of our best to date and covers everything to know about securing Authentication App TOTP codes. I have a favor to ask, if you don't mind. We are trying to help people protect accounts. Would you please help us promote this, by posting on social media and recommending it to your friends & colleagues. This will prevent a lot of potential heartache. Thank you! ruclips.net/video/imgXU5ahTA8/видео.html
New friend here watching from samar.
Thanks for commenting and subscribing!
I'm sure glad I watched this before I wasted $100 on these things. I wondered why everyone wasn't using them? I get it now! These are for IT professionals ONLY. A typical web surfer like me, is never going to get that thing to work.
thumbs up and connect bell all
Appreciate the content, thanks! I bought my two yubikeys. A question I have is can I use my yubikey as a static password AND 2FA at the same time so to speak. IAW, login with the static pasword then use the key for my Yubicon autheniticator 2FA?
Absolutely! You just have to practice "long press" so you generate the static password correctly. Use a txt application, plug in the yubikey and long press to see the password generated in the txt file. You should also consider backing up all your authenticator codes. See our video on doing this: ruclips.net/video/imgXU5ahTA8/видео.html May I ask a favor? Please consider sharing our content with family, friends, coworkers & on social media. This will promote our efforts to help others. And if you know anyone who has a window computer they need to watch this video before they lose all their data: ruclips.net/video/qnqnIuGEnH0/видео.html Thank you for commenting & subscribing. Let us know your tech interest and we'll share some additional videos that may be of interest.
@@CyberMedics appreciate the timely responses. As I watch your video again, I see that with each application, you're reconfiguring slot 2. To me, it suggests your overwrting the previous applications configuration. Yes? If I configure my key slot 2 with a static password then reconfigure it again w/HOTP, for example, I will lose my static password. Seems like the key is limited to just one application then. What am I missing here?
@@Zues64 You are spot on. Slot 2 is overwritten and can only be programmed for one function at a time.
@@CyberMedics well, I’m gonna try to program slot two for a static password, and keep slot 1 for 2FA TOTP. Wish me luck!
@@Zues64 dont think you'll have any trouble. Just reach out if you need any support.
Sending full support from Regina Hembra Vlog here
Can you just 2fa your 1password accont and not 2fa all your individual accounts. I'm thinking of going double blind on 1password with yubikey. I gotta think doube blind is secure without individual 2fa. Look forward to any input.
Not that familiar with 1Password, but would think it is similar to BitWarden. See our video on 2FA Bitwarden: ruclips.net/video/f3pY9LJAHPk/видео.html.
Another way to do 2FA is with a Google voice account secured with a yubikey. That way the codes are sent securely to your phone, bypassing the insecure cell network. Not sure why you wouldn't want 2FA on all your account. Please elaborate on this.
Please share how you would accomplish double blind in 1Password. One suggestion is to put the base password of all the accounts in the password manager, then program slot 2 of the Yubikey long press with a passphrase. You could also add a password to the Yubikey. In order for someone to get into your accounts the have to: 1) break into the vault, 2) physically possess your key, & 3) know the Yubikey password. Pretty secure. What are your thoughts?
Thanks for the informed/significant comment & hope you subscribed?
@@CyberMedics ... Thanks for that. I'll have to research these things you say. I'm certainly planning to maintain 2fa on my financials. I just wasn't sure account based 2fa was needed on top of a hardware protected password manager. Especially if I use double blind passwords. Double blind is available within this particular password manager. In that case the full password is only known to the website. It's as you describe with an appended or prepended code. I'm just getting wise to all of this. I've been remembering all my sensitive passwords with regular changes for years and I'm not getting any younger. Thank you!
@@undaware Let us know if you need any help. I've implemented 2FA on every account. Think of the havoc someone could cause you if they even just got into a social media account. Any account breached gives them inside information on you and potentially positions them to cause you harm. It is a shame we have to be this paranoid, but it is our reality now. Based on your feedback I'm doing a new video covering double blind password using the yubikey & PW manager. Do what you can to get the word out about the channel. We are focused on helping end users with technology...specifically those technologies that can enhance your personal security at home & online. Don't use your cell phone #for 2FA. It is ok to use a Google Voice # especially if it is secured with a strong 2FA method (hardware key or authentication app).
@@undaware Hey this Vids for you:ruclips.net/video/pQ7ETiPfmqk/видео.html premiers Aug 12th.
Shame my Yubico YubiKey won't work with Windows 11?
Thanks for commenting. I use yubikey with Windows 11. Would you be more specific on how it doesn't work?
Sending full support from Regina Hembra Vlog
I got a blue yubikey USB A and just plug it into a USB c adapter
That is a smart implementation. I'm sure you are aware the blue security key is not compatible with authenticator apps. Thanks for watching and subscribing.
@@CyberMedics yeah I got the yubikey neo for that it's brilliant 😊
@@aaron6841 Nor familiar with the nio. Did you perhaps mean the nano? If not please post a link to the nio. Thanks.
@@CyberMedics neo
@@CyberMedics I don't get the Nano. If you leave it plugged into a laptop and you walk away with your Starbucks in hand and forget to take your laptop with you, not only do they have the laptop but some non-trivial subset of your accounts are compromised. I love the idea of it not sticking out, but not of it living in the laptop.
But he PIV section is what I need to know about.
What specifically do you want to know or what is the use case?
Can you look at this video on Yubikey (see below)- it shows much more advanced options on the Yubikey and what is important to change (i.e. default pins on the key that are put in by the mfg ! - like "admin" on wifi routers years ago. Can you explain better what the presenter is showing in this youtube - ruclips.net/video/rNtzmgt0Al4/видео.html
I am sure you will get a lot of hits on that video as it looks like the above video is one of the few covering the PIN changes and key info that should be backed up in a PW manager. Consider it.
It looks like most the things in that video (not covered in ours) are related to enterprise management functions, which are not required for end user FIDO functionality. We will take a deeper look at it. Thanks for subscribing & commenting!
Hi
Waiting # Ka Danny TV
Watching here po new driend
Stay connected
Wow, the only "bezarro" thing here is your knowledge (or rather lack thereof) of otp vs fiod2 😂
Thank you for the comment and constructive criticism. Sure it is appropriate, but would be more constructive to point out the specific error. Hopefully your here to help others…
If you read the pinned comment and video description you would see that another subscriber had pointed out the error. We went into detail about the confusion. Please try to be constructive when commenting on RUclips videos.
New friend here
I was doing fine until you started speaking Greek or some other foreign language.
Lol. Sorry for that. Please let us know if we can help.
Sending full support from Regina Hembra Vlog
Sending full support from Regina Hembra Vlog
Sending full support from Regina Hembra Vlog