Security Keys & Hardware Tokens

The primary difference between a Secuity Key and a Hardware Token is that a Security Key is a physical device which plugs into your computer when you're signing into a service protected by MFA.  Alterantively, a Hardware Token is a physical device which generates a 6 digit numerial code which you will enter into the MFA prompt.

Security Keys

The following security keys have been tested with Western's MFA:

  • YubiKey 5 NFC
  • NFC by Yubico

Security Keys can be purchased on amazon or local stores. Self enrollment is possible in MyMFA. Duo allows self-enrollment of Security Keys. Please refer to https://guide.duo.com/u2f for instruction on registering a Security Key to your Duo Security profile.

Hardware Tokens

The following hardware tokens have been tested with Western's MFA:

  • Duo
  • Feitian HOTP c200

WTS can provide a Hardware Token to main campus faculty and staff, however you will be required to pick up the token in person. In order to obtain a hardware token, please visit the WTS Helpdesk located at the Support Services Building (1393 Western Rd), from 8:30AM to 4:30PM, Monday to Friday. Please note that you will be asked for your Western ID and a government-issued photo ID.

If you are a Western student or a faculty/staff member from Brescia, Huron or Kings, you can purchase and receive your own Hardware Token from a third party retailer. Duo supports HMAC-based One-time Password algorithm (HOTP) tokens and Time-based One-time Password algorithm (TOTP) tokens.  Duo does not presently allow self-enrollment for these tokens. Once you have received your token, please contact the WTS Helpdesk in order to get your token set up.


Published on  and maintained in Cascade.