Secure your Gmail account with a Token2 programmable hardware token
This guide describes using TOTP Hardware tokens for Google Account. You can also use a FIDO Security key for multi-factor authentication with Google:
Using Your Token2 Security Key with Google
Token2 programmable tokens are 'drop-in' replacements for mobile applications like Google Authenticator or Token2 Mobile OTP. If you'd like to enable hardware token-based two-factor authentication for your Google Account,
you can use these programmable tokens as an alternative to the mobile app method by following the instructions below. Using Your Token2 Security Key with Google
Requirements:
• An access to the Google account.• Any of the Token2 TOTP programmable tokens.
• An app for provisioning the programmable tokens (NFC burner or USB Config tool, depending on the model). The list of compatible apps is available here.
Step1. Enable an MFA method
1) Log in to your Gmail account and navigate to Account Settings.
2) Click 'Security' in the left-hand menu.
3) Turn on 2-Step Verification.
4) Click 'Set up authenticator'.
5) A QR code will be displayed.
In the next step, scan the QR code using one of the provisioning tools.
Step 2. Provision the token
- Launch the NFC burner app on your Android device and hit the "QR" button
- Point the camera to the QR code shown on the account page. Upon a successful QR scan, the camera window should disappear
- Turn on the token and touch it with your phone (make sure it is overlapped by the NFC antenna) and click "Connect" on the app
- Upon successful connection, click the "Burn seed" button (the button will become active only if NFC link is established).
- A message box similar to the one below will be shown upon successful completion
Follow the steps below to perform setting the seed for your token using Windows App.
1. Launch the exe file, then select the NFC device from the drop-down list and click on "Connect". You should see a message box notifying about a successful operation.
2. Enter or paste the seed in base32 format, or use one of the QR scanning methods to populate this field
3. Place the token onto the NFC module and wait for its serial number to appear.
4. Click on "Burn seed" button. A log entry with the serial number and "Successful operation" text will be logged in the log window.
- Launch the NFC burner app on your iPhone device and hit the "scan QR" button
- Point the camera to the QR code shown on the account page. Upon a successful QR scan, the camera window should disappear and the seed field will be populated with the hex value of the seed. Touch the Burn button to continue.
- When an NFC prompt similar to the one below is shown, turn on the token and touch the top of your iPhone with the token.
- A message box similar to the one below will be shown upon successful completion
Please note that the procedures above are shown only as examples and are valid to single profile TOTP tokens only. The procedure for multi-profile and USB-programmable devices are similar but slightly different
Step 3. Verify the OTP
Once the token provisioning is completed, turn the token off and then back on. Enter the OTP (One-Time Password) generated by the hardware token, and then click "Verify" to proceed.
Click 'Done' to successfully add 2-Step Authentication.
From now on, during the login process, after entering your username and password, you will be prompted to enter the OTP (One-Time Password).
Subscribe to our mailing list
Want to keep up-to-date with the latest Token2 news, projects and events? Join our mailing list!