YubiKey 4

Availability: Usually ships in 24 hours Fulfilled by Amazon and Sold by Yubico Inc. 3 new or used available from $34.98 Average customer review:  (134 customer reviews)

Product Description

Two-factor authentication made easy for hundreds of services!
YubiKey 4 is a USB device that you use in combination with your username/password to prove your identity. With a simple touch, YubiKey 4 protects access to computers, networks, and online services. Keep one on your keychain with your house keys, and a second backup key in a safe place at home.
All-in-one configurable security key performs: smart card (PIV), Yubico OTP, FIDO U2F, OpenPGP, OATH-TOTP, OATH-HOTP, and Challenge-Response. Yubico offers free and open source tools to configure the YubiKey yourself.
Easier and safer than authenticator apps: No more reaching for your smartphone to re-type passcodes that you receive via SMS or from an authenticator app. Just plug in your YubiKey, tap, and it does the rest for you.
Works out of the box with hundreds of applications: Use it with popular services like Facebook, Gmail, GitHub, DropBox, Dashlane, LastPass, Salesforce, Duo, Docker, Centrify, and hundreds more. Configurable for computer login (Windows, Mac, Linux). Follow the instructions that each service provides, to register your YubiKey.
Using your YubiKey: Go to yubico.com/start for instructions on how to register your YubiKey with each service. Steps to enroll your YubiKey 4 may differ from service to service. Yubico has provided steps based on their own testing, and links to those services for full instructions.
USB Type A compatible: Plugs into USB Type A ports. Purchase adapters for devices that feature lightening or USB-C ports to perform one time passwords.
Extremely durable (IP67 class rating by IEC 60529): High quality, crush-resistant, and water-resistant.
Attaches to house and car keychains.
Manufactured in USA and Sweden with high security and quality in mind.

---

Product Details

• Color: Black
• Brand: Yubico
• Model: Y-158
• Dimensions: .12" h x .71" w x 1.77" l, .1 pounds

Features

• Two-factor authentication made easy for hundreds of services
• Smart card (PIV), Yubico OTP, OATH-TOTP, OATH-HOTP, FIDO U2F, OpenPGP, Challenge-Response
• USB Type A compatible
• Extremely durable and rigid; crush and water resistant
• Attaches to house and car keychain

---

Customer Reviews

Most helpful customer reviews
55 of 57 people found the following review helpful.
Great device for secure two factor authentication - not for everyone
By Jeff
This is an excellent device and I strongly recommend it if you use a password manager that supports it (Last Pass, Dashlane, etc). The benefit of this device with a Password Manager is you can enable two factor authentication to add a new device capable of signing into your account. In short, it doesn't matter if someone knows you master password, they can't add a device (computer capable accessing your account) unless the have they have a Yubikey.

To add a phone or tablet that doesn't have a USB, use this device on a computer to temporarily disable the two factor Yubikey authentication, add your Device, then reable the key. I recommend getting a backup key or if your spouse or partner uses one, register both keys on each other's account. This will save headaches if the device is lost.

This security key has the ability to maintain two two security access methods, e.g., Smart Card and Fido U2F. Be aware this comes with no documentation at all! I mean none - while there is a lot of information on their website and on the Dashlane Password Manager website, you get the feeling that these products are aimed at a narrow group of IT savvy individuals or organizations with IT specialists to configure them for staff.

I hope this review is helpful!
40 of 42 people found the following review helpful.
Get two if you are considering it.
By Tom is a nerd
I bought this to figure out how it worked. Its silly easy. Basically it can integrate with almost any authentication YOU own. As far as third party it can be made to work (easy) with anything that is always online. If your using it to authenticate to something offline it can do a challenge response and the configuration seems quite secure.

You already know its practically indestructible.

Love it, you probably don't need this newest nicest one, but I do strongly recommend getting two, and configuring them with your services at the same time, that way if the key is lost or stolen you don't have to jump through password recovery hoops.
8 of 8 people found the following review helpful.
Yubikey + LastPass for the win!
By R. Seehoffer
With the stories of hacking and stolen credentials showing up every day in my news feed (including today, Banner Health) I decided to be a little proactive and combine my Lastpass account with a Yubikey. The key arrived today and took about 10 minutes to set up and test on all my devices. Easy as could be, with all of the info on the Lastpass and Yubi sites. With this kind of simplicity, there's no reason not to use multi-factor authentication. Next, I will work on configuring my Google accounts...

Update: Just a couple more pieces of info for anyone interested. I used the YubiKey Personalization Tool for Windows to insert a static password into what they call Slot 2, to use with a different service. That worked as expected, once I watched a quick video on how to configure the software and key. I could not get the same software to work with Linux, no matter what I did. Also, the YubiKey works well in conjunction with a Nexus tablet and an OTG cable. The only thing I found is, you must be touching the device with one hand while placing your finger on the Yubi, or it won't register your touch. Just FYI...
See all 134 customer reviews...