How to Set Up a YubiKey — Google, Microsoft, Apple & GitHub

Quick Answer

Setting up a YubiKey takes about 3 minutes per account. No software installation is needed. Go to your account's security settings, find "Security Key" or "Hardware Key" under 2-Step Verification, click Add, then insert your YubiKey into USB or tap it via NFC when prompted. Always register two keys on every important account — one to use daily, one stored as a backup.

ℹ️ Affiliate disclosure: links below are Amazon affiliate links. Commission earned at no extra cost to you.

⭐ Don't have a YubiKey yet?

Best overall (USB-A): YubiKey 5 NFC (~$52)
Best for USB-C devices: YubiKey 5C NFC (~$57)
Best budget: Security Key NFC (~$28)

Before You Start

Your YubiKey works out of the box — no drivers or software needed for FIDO2 use. You will need: the YubiKey, your account password, and access to your current 2FA method (SMS or authenticator app) to verify identity before adding a new security key. Have your backup key ready to register at the same time as your primary key.

Set Up YubiKey on Google Account

Go to myaccount.google.com → Security

Click Security in the left sidebar. Under "How you sign in to Google", click 2-Step Verification.

Scroll to Security Keys → Add security key

Scroll past SMS and authenticator options to Security keys and click Add security key. Click USB or Bluetooth.

Insert your YubiKey and touch the gold disc

Insert the key into a USB port. When Google prompts you, touch the gold contact on the YubiKey. The key flashes to confirm. For NFC: tap the key to the back of your phone near the top.

Name the key and save

Give it a descriptive name (e.g., "YubiKey 5 NFC — primary") and click Done. Repeat the process to register your backup key with a different name.

Set Up YubiKey on Microsoft Account

Go to account.microsoft.com → Security

Click Advanced security options.

Add a new way to sign in → Security key

Under "Ways to sign in", click Add a new way to sign in or verify → Use a security key.

Choose USB or NFC and follow the prompts

Select your connection type. Insert or tap the YubiKey, touch the gold disc when prompted, and set a PIN for the key when asked (this is a key-level PIN, not your account password — store it somewhere safe).

Name the key and finish

Name the key and click Next. Your YubiKey is now registered as a sign-in method for your Microsoft account, Outlook, Teams, and Azure AD.

Set Up YubiKey on Apple ID (iOS 16.3+ / macOS Ventura+)

Open Settings → Your name → Password & Security → Security Keys

On iPhone: Settings → [your name] → Password & Security → Security Keys → Add Security Key. On Mac: System Settings → Apple ID → Password & Security → Security Keys.

Follow the setup flow

Apple requires you to review which devices are signed in to your Apple ID before proceeding. Remove any devices you no longer use. Then insert or tap the YubiKey when prompted and touch the gold disc.

Register two keys — Apple requires it

Apple mandates registering at least two security keys for Apple ID. Register your primary and backup key in the same session.

Set Up YubiKey on GitHub

Settings → Password and authentication → Security keys

On github.com: click your profile icon → Settings → Password and authentication. Scroll to Security keys and click Add.

Name the key and insert/tap

Enter a nickname for the key, click Add security key, then insert or tap the YubiKey and touch the gold disc when prompted. Done.

💡 Save your recovery codes: When you enable hardware security key 2FA on any platform, save the account's recovery codes to a secure location (password manager or printed paper in a safe). These are your last resort if both security keys are lost.

Frequently Asked Questions

How do I set up a YubiKey for the first time?

No setup needed — plug it in or tap via NFC when prompted during the 2FA registration flow on your chosen platform. Works out of the box for FIDO2/WebAuthn.

Can I use one YubiKey for multiple accounts?

Yes. Register it with as many accounts as you want — Google, Microsoft, GitHub, Apple ID, Dropbox, and more. Each registration is independent and stored on the service's server.

What happens if I lose my YubiKey?

Use your backup key or recovery codes to sign in, then remove the lost key from each account's security settings. This is why registering two keys on every account is essential.

Do I need to install software to use a YubiKey?

No software required for FIDO2 use. The optional YubiKey Manager app is only needed for advanced configuration like setting a PIN or managing PIV certificates.

Does YubiKey work on iPhone and Android?

Yes. YubiKey 5 NFC works via NFC tap on iPhone (iOS 14.5+) and Android. On Android you can also use USB-C connection. NFC tap registers and authenticates just like USB on desktop.