Understanding Core Static Password Features

A static password requires no back-end server integration, and works with most legacy username/password solutions. Note, however, that a static password does not provide the same high level of security as one-time passwords. To configure a static password, download the YubiKey Personalization Tool. You can configure a static password as follows:

  • When configured in Advanced mode, the static password can contain up to 64 characters, modhex only (you cannot choose your own password); you can add the exclamation or bang character (!), capital letters, and numbers to conform with strong password policies
    • Tip: Increase the password size to 65 characters by selecting the option to Send ! as prefix in the Advanced mode settings. An example password would be: !NN33niugtdnbblhjllctlndfljduijcebretnbjdfiueiijbftjlnkdecluvhfuf
  • When configured in Scan code mode, the static password can contain up to 38 characters; can be any ASCII 256 characters

Note: We recommend you use the YubiKey in static password mode for only part of your password. To do this, manually enter a simple and easy-to-remember first part of your password, then use the YubiKey to enter a strong second part of your password. For example, you can set your password to: Sunny33rcltrcihbkkiulnveuenervidliliifv where “Sunny33” is manually entered and “rcltrcihbkkiulnveuenervidliliifv” is stored in, and entered, by the YubiKey.

For more information