YubiKey 4 Nano

Yubico’s lineup of U2F-compliant keys — YubiKey 4, YubiKey 4 Nano, U2F Security Key, and YubiKey NEO — are ready to plug-and-play with tools for managing two-factor authentication deployments now available in the Dropbox Business Admin console.

Manage your YubiKey user population with controls such as usage policies, including providing policies for optional or mandatory enrollment.  These management capabilities are a powerful evolution in the value of YubiKeys for enterprises of all sizes. Enterprises and organizations now have a full package including the backend management infrastructure, a universal client (Chrome – with Mozilla in the works), and a hardened security device with U2F-compliant YubiKeys.

Enterprises using Dropbox Business (or Dropbox Enterprise) and individuals using Dropbox can also enable two-step verification on their Dropbox accounts.

Core Features of U2F-Compliant YubiKeys

  • Work on Microsoft Windows, Mac OS X, and Linux.
  • Touch the button to trigger security based on public-key cryptography.
  • Identify as a USB HID device which is standard on all computers.
  • Crush-resistant, waterproof design in two form factors.
  • Do not require a battery.
  • Fit nicely on a keychain, in a wallet, or inside a USB port.
  • Manufactured in USA and Sweden.
  • See our comparison chart of U2F-compliant YubiKeys.

Required pieces for Setting Up Your U2F-Compliant YubiKey with Dropbox

  • Latest version of Google Chrome browser.
  • A Dropbox Business or Dropbox Enterprise account.
  • YubiKey 4, YubiKey 4 Nano, YubiKey 4C, YubiKey 4C Nano, U2F Security Key, or Yubikey NEO.
  • One finger (the YubiKey button is a capacitive sensor not a biometric).

How to Set Up Two-step Verification with Dropbox

  1. Obtain U2F YubiKeys for your team.
  2. Set up two-step verification in the Dropbox Admin console, under Security. For more information, refer to the Dropbox Help Center.
  3. Determine whether you want to enforce two-step verification for your team.
  4. Provide instructions to your team on how to use two-step verification, including how to use backup SMS messages, or Yubico Authenticator or Google Authenticator codes. For step-by-step instructions, see Dropbox for Personal Use.
  5. Provide instructions so they can now log in to their Dropbox account using their user name, password, and U2F YubiKey. For step-by-step instructions, see Dropbox for Personal Use.

Background on Universal 2nd Factor (U2F)

FIDO U2F is an emerging open authentication standards initiative with strong support from more than 180 end-user and vendor companies in the FIDO Alliance, a consortium working to bring strong authentication to the masses.

U2F breaks the mold for high-security, public-key hardware devices by removing the complexity of drivers, client software and the traditional costly certificate authority (CA) model.

With FIDO U2F, one single device can be used with any number of online services with no user information or encryption keys shared between the service providers.

To see where else you can use your U2F-certified YubiKey, see our FIDO U2F page. For additional FAQs, see our Support FAQs.

For more information, see the full U2F Specifications on the FIDO Alliance website.