Setup Hardware Token / Yubikey as 2FA/MFA for Drupal
Overview
Two-factor authentication (2FA) plays a key role in securing Drupal accounts against password breaches by adding an additional layer of security. By following this document you can configure Hardware Token / Yubikey as a Two Factor Authentication - TFA method for Drupal account. The Drupal Two Factor Authentication - 2FA / Passwordless Login is available for Drupal 7, Drupal 8, Drupal 9 and Drupal 10, and Drupal 11.
Installation Steps
- Using Composer
- Using Drush
- Manual Installation
Configuration Steps
Configure Hardware Token / Yubikey as a 2FA method:
- Once the module is installed navigate to the Configuration section in the admin console of Drupal site and click on miniOrange Second Factor under people section. (/admin/config/people/miniorange_2fa/setup_twofactor)
- Register/Login with your miniOrange account.
- Navigate to the Setup Two Factor tab and scroll down to the Other 2FA methods section.
- Click on the Configure button next to Yubikey Hardware Token.
- Enter the OTP in Hardware Token One Time Passcode.
You have successfully configured Yubikey Hardware Token - 2FA method.
Verify 2FA:
- Open a new browser/private window and navigate to the login page of the Drupal site.
- Login with the Drupal credentials.
- Enter your Hardware Token One Time Passcode and click on Verify button.
- If the authentication is successful you will be logged in to the Drupal site.
Additional Features:
Explore the advanced features offered by the module with full-featured trial. You can initiate the trial request using Request 7-day trial button under Register/Login tab of the module or reach out to us at drupalsupport@xecurify.com for one-on-one assistance from Drupal expert.
- Passwordless Login
- Role Based 2FA (Enable 2FA for specific roles)
- Domain Based 2FA
- Remember My Device