User: Password:
Subscribe / Log in / New account

Yubikeys are now supported

From:  Mike McGrath <>
Subject:  Yubikeys are now supported
Date:  Thu, 7 Oct 2010 12:04:49 -0500 (CDT)
Message-ID:  <alpine.LFD.2.00.1010071201160.9476__27960.5430354879$1286471296$gmane$>
Cc:  Infrastructure <>
Archive-link:  Article

The Fedora Infrastructure team is happy to announce support for the
hardware key authentication device, the yubikey.  Users will be able to
use their own yubikeys to access some Fedora services, like or some web services.

Why have we done this?  The main purpose was to provide multi-factor
authentication to our high security systems.  Requiring both a
username/password and yubikey otp to access our most sensitive hosts
provides an additional layer of security then just username/password
alone.  Contributors requiring access to these hosts will be provided with
a yubikey.  These hosts would include, for example, the signing servers.

We also decided to allow yubikeys as an authentication option for the
larger community to some hosts and services like or  When asked for a password,
just use your yubikey to generate a otp instead.  Those wishing to use one
may purchase a yubikey on their own at:

For more information on how to program your yubikey see the our yubikey
howto on the wiki:

Implementation work continues to be discussed and put in please but please
direct any questions or comments to #fedora-admin on or
the Infrastructure mailing list -

devel-announce mailing list
devel mailing list

(Log in to post comments)

Copyright © 2010, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds