Resetting the FIDO2 Application on Your YubiKey or Security Key

Note: If you have a blue key, note that this article applies to the Security Key by Yubico and Security Key NFC, but not the FIDO U2F Security Key, which cannot be reset. To identify which of these keys you have, follow steps 1-3 below, and check how YubiKey Manager identifies your key. If you have a FIDO U2F Security Key, you will need to manually "unregister" it from the services it is registered with; there is no way to reset it.

In some scenarios, such as when the FIDO2 PIN is locked from too many incorrect attempts, you may want to reset the FIDO2 application on your YubiKey or Security Key. 

Warning: resetting the FIDO2 application will delete all resident credentials as well as reset the FIDO root key used by FIDO2 and U2F for two-factor authentication. 

  1. Download and install YubiKey Manager.
  2. Insert your YubiKey to an available USB port on your computer.
  3. Open YubiKey Manager.
  4. Click Applications, then FIDO2.
  5. Click Reset.
  6. On the confirmation page, click Reset.
  7. Click Yes to confirm.
  8. When prompted, remove and re-insert your YubiKey.
  9. When the LED on the YubiKey begins flashing, touch the metal contact.

Note: Due to changes in Windows, you may need to run YubiKey Manager as administrator in order to access FIDO2 under Applications if you are running Windows 10 version 1903 or higher.