Hi!
I just took my first Yubikey II out of the envelope and tested it, set it up with Fastmail and Lastpass. Works great (although I have already managed to scratch it while trying to insert it into my keyring
). I noticed that the first seven characters of my Yubikey's output are 'ccccccc'. So I'm wondering if my Yubikey is not ready for use and must be programmed (like first time setup). Is this normal and do I require some sort of first time initialization for my Yubikey to be secure and personalized? Or is it ready to be used right out of the box?
Also I checked my Firmware version with the personalization tool and it's 2.1.1. It supports 2 configurations which are separate from each other. I however read in the manual that if you switch your Yubikey to fixed password mode, you'll lose the OTP functionality. The question is, will I be able to use OTP if I setup a 2nd configuration as fixed password? The first one will be gone too? Also I'm too scared to somehow erase my factory OTP configuration but I do want to use my Yubikey with TrueCrypt..
The exact quote I am worried about is:
Quote:
WARNING! By re-initializing your YubiKey, either by manually programming a new AES key in the YubiKey or programming the YubiKey for OATH-HOTP or static password, you will lose ALL abilities to use that particular YubiKey against Yubico online severs, including validation server, forum, wiki, etc. Customers are advised to consider using separate YubiKeys for use in Static Password Mode or for development and testing purposes.
Thank you for your attention to my post