What is Yubico OTP?
Yubico OTP is a simple yet strong authentication mechanism that is supported by the YubiKey 5 Series and YubiKey FIPS Series out-of-the-box. Yubico OTP can be used as the second factor in a 2-factor authentication scheme or on its own providing strong single factor authentication.
How does Yubico verify Yubico OTPs?
In order for Yubico OTP to work with YubiCloud (Yubico’s validation service) the information programmed into the YubiKey must also be uploaded to the YubiCloud. As part of the process of manufacturing every YubiKey, a Yubico OTP credential is programmed into slot 1, and its information is also transferred to YubiCloud, meaning this functionality should work out of the box with any new YubiKey.
What happens if I accidentally delete my YubiOTP?
If you delete or overwrite your Yubico OTP credential from your YubiKey, the information needed for the YubiKey to be able to generate Yubico OTPs will be lost. In order to restore this functionality, you will need to program and upload a new credential, which can be accomplished by following this guide.
What are the advantages to Yubico OTP?
No client software needed
The OTP is just a string. If you can send a password, you can send an OTP.
YubiKey ID embedded in OTP
This allows for self-provisioning, as well as authenticating without a username.
Easy to implement
Using YubiCloud, supporting Yubico OTP is not much harder than supporting regular passwords.