Ask for the account name.

Now select the authentication method.

Attention! Not all mobile devices and Global Protect versions fully support the YubiKey. A list of known compatibilities can be found on this page: 2FA Compatibility

You can choose between:

• Universitäts Passwort + One Time Passwort
• Universitäts Passwort + Yubikey

This depends on:

1. Which second factors you have registered
2. Which factors are supported by your device
3. If you use applications for business purposes, the YubiKey is often mandatory as a prerequisite
4. Which one you prefer
    

The password is then requested first.

The circular green symbol with the key in the input field is only displayed if you have installed the KeePassXC browser extension.

You will now be asked for the One-Time-Password. 

You create this with your respective OTP application. It is time-dependent and is valid for 30 seconds after creation.

When the YubiKey is requested, you must now connect the key to the device. Depending on the browser, an additional separate prompt may also be displayed. (see left)

The connection can be made by inserting it into the USB-C port or, for devices that allow this, by placing it on the NFC sensor.

When using the USB-C port, the letter y on the YubiKey lights up green, which you must touch lightly and briefly.

Depending on the application, you will now be taken directly to this or a success message will be displayed.

Here is an example of the message when logging in to the VPN.