U2F Security Key - FIDO 1.0 (MFA)

End users use a U2F compliant security key to sign in to Okta. Examples of supported U2F security keys include a YubiKey or Titan Security Key.

U2F is supported only for Chrome and Firefox browsers.



The U2F security key is not compatible with RADIUS-enabled implementations.

Configure a U2F Security Key

The first time users sign in to their org after you configure this factor, they see the Set up multifactor authentication page and must perform the following steps:

  1. Click Setup.
  2. Follow the prompts to register the security key and set it up.
  3. Once completed, click Done.

The next time your users sign in, the're shown a panel with instructions for signing in using their security key.

If your policy allows use of optional factors, end users can change to a different factor through the Okta Settings page under Extra Verification.