Configuring Hardware Keys (e.g. Yubikey, Feitain) for passwordless login in myDRE

Configuring Hardware Keys (e.g. Yubikey, Feitain) for passwordless login in myDRE

Overview

This guide explains how to set up a hardware key like YubiKey (Series 5 or any FIDO2-compliant security key) for passwordless login to the myDRE portal. Using a hardware key enhances your account security and simplifies your login process.

Warning
Please note: a password is still required when logging in to Virtual Machines (VMs). A password manager can be used and is recommended.

What You’ll Need

  1. Your @mydre.org account credentials
  2. A compatible hardware key (Yubikey Series 5, Feitain K26/K27 or any FIDO2-compliant key)
    1. Tested and working: Feitain K26 (Bio), YubiKey 5C NFC, YubiKey 5C
      1. it might be worthwhile to search for better deals
      2. make sure you get the correct USB (USB-C or USB-A, adapters like C-> A work)
  3. Access to a computer with a USB port or NFC reader

MFA Authenticator
Hardware Key
Bio Hardware Key
Pros
  1. No extra cost
  2. Safe
  1. Safer
  2. Easier to login in the web part:
    insert, touch, pin, touch, remove
  1. Even safer
  2. Even easier to login in the web part:
    insert, finger touch, remove
Cons
  1. Login in the web part is cumbersome: username, password, authenticator
  1. Extra costs (think €30-50)
  2. Cannot (yet) be used to authenticate VMs
  1. Extra costs (think €60-100
    (tip: search for a good deal)
  2. Cannot (yet) be used to authenticate VMs

Step-by-Step Instructions

1. Access Your Microsoft Account Security Settings
  1. Go to https://myaccount.microsoft.com.
  2. Alternatively, while logged into the myDRE portal, click Manage account in the lower left corner.
2. Sign In
  1. Log in using your @mydre.org account credentials.
3. Navigate to Security Options via Security Info
  1. Select Update info or Add sign-in method.

4. Add your Hardware Key as a Security Method
  1. Choose Security Key from the list of available sign-in methods.
  2. Click Add.


5. Select your Hardware Key Type
  1. Choose External security key or built-in sensor.
  2. If prompted, select either USB device or NFC device based on your Hardware Key model.

6. Insert or Tap your Hardware Key
  1. For USB Hardware Key: Plug your Hardware Key into an available USB port.
    1. For Bio enabled Hardware Keys, follow the instruction on the screen
  2. For NFC-enabled Hardware Key Hold your Hardware Key near your device’s NFC reader.
7. Set Up your Hardware Key PIN
  1. If this is your first time using your Hardware Key you’ll be prompted to create a PIN.
    1. This is also the fall-back for a Bio Hardware Key
  2. Enter a PIN of your choice and confirm it.
8. Register your Hardware Key
  1. When prompted, touch the gold sensor or button on your Hardware Key.
  2. You may need to touch it twice to complete the registration.
9. Name your Hardware Key
  1. Give your Hardware Key a recognizable name (e.g., “Primary Hardware Key” or “Work Hardware Key”) for easy identification later.
10. Complete the Setup
  1. Click Done or Finish to confirm and save your new security key.

Important Notes

  1. Passwordless login with Hardware Keys is available for the myDRE portal only. You will still need your password to access Virtual Machines; it is recommended to use a password manager.
  2. For a list of all compatible security keys, refer to the official Microsoft documentation.
  3. If you need to remove or replace your Hardware Key, return to the Security info section and manage your sign-in methods.
Warning
If you lose your Hardware Key, please submit a ticket or email support@andrea-cloud.com to block/reset your account 

Troubleshooting

  1. If you encounter issues during setup, ensure your browser supports FIDO2/WebAuthn and that your Hardware Key firmware is up to date.
When entering verification code during the setup, the following error occurs: 

This error is not specific and can mean many things. Please exclude that this is caused by: 
- invalid code: Double-check the code you are entering and ensure it is freshly generated
- time synchronisation issues: Synchronize your device's clock with an internet time server
- browser compatibility issues: Try another browser
- ensure your hardware key is properly registered
- network/ connectivity issues: ensure you have stable internet connection

If you keep seeing the error, please submit a ticket at support.mydre.org together with the timestamp and error correlation ID and your myDRE username. 


    • Related Articles

    • Hardware Key / Passwordless to login to myDRE Portal

      Dear myDRE Users, We are excited to announce that you can now set up a hardware security key (like YubiKey, Feitain or any FIDO2 compliant key) for passwordless login to the myDRE portal. This makes logging in faster and more secure! Not only for ...

    • I cannot login to mydre.org

      All users with a @mydre.org account should be able to log into DRE. If you cannot login, please first see whether there is a message on top of https://mydre.org/ or check the Knowledge base on support.mydre.org mentioning a login/platform-wide ...

    • myDRE-Learning

      The myDRE-Learning platform expands your knowledge on a wide range of topics, from the basics of myDRE to Virtual Machines, Workspaces, Rroles, Costs and much more. Accessibility is at the heart of our platform. You can learn at your own pace and on ...

    • E-mail notification before auto-shutdown triggers

      Introduction By default, all DRE VMs will be automatically shut down at 19:00 UCT +01:00 (Amsterdam, Brussels, Paris, etc). This auto-shutdown is there to prevent you from incurring unnecessary costs because you forgot to deallocate the VM(s). The ...

    • Federated Learning on myDRE with VANTAGE6

      VANTAGE6 An open source privacy preserving Federated Learning Infrastructure for Secure Insight Exchange. ARCHITECTURE VANTAGE6 uses a client-server model, which is shown in the figure below. In this scenario, the researcher can pose a question and ...