Authorize Your Mobile Device to Skip Two Factor Authentication

Passpack supports both email and Yubikey two factor authentication. On your mobile device though, there is physically no place to insert your Yubikey.

To keep you from being locked out of your account when on the go, Passpack lets you do a one-time setup on your mobile device which authorizes just that phone to skip the Yubikey during login. Make sure you have actually already set up a two factor authentication method in your standard (non-mobile version) account. Here's how.

Your device's browser must support HTML5. If not, you can't use this one-time authorization feature. Sorry.

Email Method (pretty easy)

On the screen that prompts you to insert the code sent to you by email, you'll also see a checkbox that says Always consider this device safe. Don't ask me again.. Check that off before pressing the Verify button.

Complete the login with your packing Key, and you're all done. The device will remain authorized unless you explicitly unauthorize it under Settings > Two Factor Authentication

Yubikey Method (a little harder)

The process is a little convoluted, but only needs to be done once per device. Your main hurdle will be getting a copy of the Yubikey generated code to your mobile phone. You will need to have both your standard computer and your mobile device in front of you to complete this set up.

Login to your Passpack account from your mobile device. Once you arrive at the screen that prompts you for the Yubikey code, do nothing. Just leave that page open for a moment.

Now, on your normal computer, open your email and address a new email to yourself. Place the cursor in the subject line of the email, then insert your Yubikey in your computer and press the button. A code should appear. This is the code you need to insert into the page that's still open on your mobile device. Press send to email the code to yourself.

Back on your mobile device, check your email, and copy the Yubikey code (hint, you may have to hit reply on some Android mail clients to be able to actually copy the code, just make sure to delete the "re:" before copying). Go back to the Passpack page in your browser, and paste the code in the field. Check the box that says Always consider this device safe. Don't ask me again.. Then, press the Verify button.

Complete the login with your packing Key, and you're all done. The device will remain authorized unless you explicitly unauthorize it under Settings > Two Factor Authentication

Related Articles

©2006-2010 Passpack. We're happy to participate in the open source community. See our credits page for more information.