Yubico Forum
https://forum.yubico.com/

Do I need to program my new Yubikey before use?
https://forum.yubico.com/viewtopic.php?f=4&t=567
Page 1 of 1

Author:  vitaly [ Thu Sep 09, 2010 6:31 pm ]
Post subject:  Do I need to program my new Yubikey before use?

Hi!

I just took my first Yubikey II out of the envelope and tested it, set it up with Fastmail and Lastpass. Works great (although I have already managed to scratch it while trying to insert it into my keyring :(). I noticed that the first seven characters of my Yubikey's output are 'ccccccc'. So I'm wondering if my Yubikey is not ready for use and must be programmed (like first time setup). Is this normal and do I require some sort of first time initialization for my Yubikey to be secure and personalized? Or is it ready to be used right out of the box?

Also I checked my Firmware version with the personalization tool and it's 2.1.1. It supports 2 configurations which are separate from each other. I however read in the manual that if you switch your Yubikey to fixed password mode, you'll lose the OTP functionality. The question is, will I be able to use OTP if I setup a 2nd configuration as fixed password? The first one will be gone too? Also I'm too scared to somehow erase my factory OTP configuration but I do want to use my Yubikey with TrueCrypt..

The exact quote I am worried about is:

Quote:
WARNING! By re-initializing your YubiKey, either by manually programming a new AES key in the YubiKey or programming the YubiKey for OATH-HOTP or static password, you will lose ALL abilities to use that particular YubiKey against Yubico online severs, including validation server, forum, wiki, etc. Customers are advised to consider using separate YubiKeys for use in Static Password Mode or for development and testing purposes.



Thank you for your attention to my post

Author:  modelrockettier [ Sun Sep 12, 2010 3:57 am ]
Post subject:  Re: Do I need to program my new Yubikey before use?

Unless you tell the configuration utility to overwrite the first configuration, or separately delete the first configuration, setting the second configuration to something else (you'll want a static password for use with truecrypt) will not affect the first configuration

Page 1 of 1 All times are UTC + 1 hour
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/