/
How do I set up two-factor authentication (2FA) with Yubico or Token2 hard tokens?

How do I set up two-factor authentication (2FA) with Yubico or Token2 hard tokens?

This article explains how to use Yubico and Token2 hard tokens for two-factor authentication (2FA) in Sunwave. It provides setup steps for each device and links to required applications.

Table of Contents

Prerequisites

  • You may need to contact your IT Department if you cannot complete 2-Step Verification on your own.

  • Ensure you have access to a computer or mobile device with USB or NFC capability, depending on your token.

  • Download any required authenticator apps before starting the setup process.

Recommended hard tokens

Sunwave supports the following hard token devices for two-factor authentication (2FA):

For an overview of two-factor authentication options, see How do I use two-factor authentication (2FA) with authenticator apps or hard tokens?

Yubico tokens

Yubico keys are USB/NFC devices suitable for staff who require 2FA across multiple applications. To use YubiKeys with Sunwave, you must install the Yubico Authenticator app on your computer or mobile device.

YubiKey models

Yubico - YubiKey 5C NFC

YubiKey 5C NFC device with USB-C connector.

image-20240415-163307.png

Yubico - YubiKey 5 NFC

YubiKey 5C NFC device with USB-A connector.

image-20240415-163028.png

How to set up YubiKey

  1. Download the Yubico Authenticator app

  2. Open the app on your computer or mobile device.

    b172f018-c700-42f4-a8ad-4750e969781c.png

  3. Insert your YubiKey into the USB port. The app will recognize it automatically. Select Add Account.

    341150f1-68ed-437e-a81a-ffe305e1d765.png

  4. Select Add Manually.

5d717ec3-d075-49d9-b61a-1108ccb22de2.png

  1. Follow the setup guide in the app. Enter the required details and click Save.

bfafe4a5-b6fa-4749-a063-357690d94882.png
af69ce8b-0bc7-48c1-ab30-f7514190ff07.png

  1. To obtain a new verification code, open the account in the app and click Copy to Clipboard.

cc81d3d9-fd18-499a-ba60-2057d9a8aba1.png

Note: The YubiKey must be connected to your device to generate codes. The Authenticator app will not function without the key inserted.

Token2 tokens

The Token2 miniOTP-2-i is a credit card–style hard token authenticator. It’s ideal for users who prefer not to install mobile authentication apps. Initial setup requires a mobile device with NFC capability. Administrators can also complete setup for end users.

Token2 miniOTP-2-i model

image-20240415-162935.png

How to set up Token2

  1. Download the Token2 NFC Burner app

  2. Open the app and select Scan QR.

image-20240415-201732.png

  1. On the Sunwave login screen, proceed to the 2FA setup prompt. Scan the QR code displayed.

image-20240415-201859.png

  1. Tap the Gear icon next to 🔥 Burn and configure settings:

    • Time Offset: No change

    • Display Off: 15 seconds

    • Algorithm: SHA1

    • Time Sync: Auto

  1. Tap the Configure button and scan the card to apply changes.

  2. Tap 🔥 Burn to pair the token. Power on the Token2 card, activate NFC, and hold the card against your phone as instructed.

image-20240415-202131.png

  1. After pairing, power on the card whenever you need a new 2FA code. The card turns off automatically after 30 seconds.

af38c27a-4ed1-46c3-abfb-4df8dbf42ee3.jpg
Token2 NFC card showing 2FA Code.

  1. You will scan the token twice during setup—once to configure and once to burn. To reset for a new 2FA number later, power on the card to generate a new code.