Buy options
23.21 CHF| Model Number | T2F2-Dual PIN+ Octo |
|---|---|
| Form-factor | Plastic case unbranded USB-A, USB-C, NFC |
| Functions | PIN+Octo FIDO2.1 WebAuthN+CTAP |
| Dimensions | 30×18×6 (without USB connectors) mm |
| Weight | 10 gr |
| Programmable | |
| Storage |
passkeys: 300 HOTP: 1 TOTP: 50 |
| Product ID | T2-101 |
| Azure Passwordless | fully compatible | |
|---|---|---|
| Google Account | fully compatible | |
| ISDecisions UserLock 11.0 or newer | fully compatible | |
| Stripe Account | fully compatible | |
| Facebook Account | fully compatible | |
| GitHub Account | fully compatible | |
| 🇨🇭 AGOV- Authentication of Swiss Authorities | fully compatible | |
Not listed here |
Write us |
|
If the system you are using is not included in the compatibility list, it does not necessarily indicate incompatibility. We encourage you to refer to our integration guides page or get in touch with us for more information. | ||
For detailed information on how FIDO2 authentication is supported across different operating systems and browsers, including specific considerations and limitations, please visit our comprehensive guide
Please check product and platform compatibility before placing an order
All pictures shown are for illustration purpose only. Actual product may slightly vary due to product enhancement or other reasons.
FIDO Key Usage
FIDO security keys with USB ports (except the mini models) are not designed to be kept plugged in while storing your main device, such as a laptop or smartphone, away. For optimal security and longevity, unplug the key when not in use. Please note that no warranty is provided for defects or damage caused by improper usage, such as leaving the key plugged in while storing the device.PIN+ Firmware
This security key runs our PIN+ firmware and is the most secure FIDO2 security key on the market. It is open-source and has undergone a public third-party security audit.Keyring Notice
This USB key features a smaller keyring hole, designed for optimal compactness and convenience. To ensure proper use, please adhere to the following guidelines:- Use keyrings ≤ 2 mm thick.
- With proper rings, the USB key tolerates 80-100 N (Newtons) of force.
- For higher forces, consider using a silicone case.
Token2 T2F2-Dual PIN+Octo FIDO2.1 Security Key - Nonbranded
Token2 T2F2-Dual PIN+Octo is an NFC-enabled FIDO2 security key featuring both USB-A and USB Type-C ports, with PIN complexity enforced at the firmware level. The onboard NFC chip allows this FIDO2 key to be used natively with modern iPhones directly in the browser (iOS 13.3 and later) as well as with Android devices that support NFC (some limitations apply).
This model includes a capacitive touch sensor and is only 6 mm thick. With the release of our PIN+ Series Version 2, you can now store up to 300 passkeys (also known as resident keys or discoverable credentials) on a single device. This key features an updated PIN+ firmware that enforces a minimum PIN length of 8 digits, compared to the 6-digit minimum required by the standard PIN+ firmware.
T2F2-Dual PIN+Octo security key combines hardware-based authentication, public-key cryptography, TOTP/HOTP, U2F, and FIDO2 protocols to protect your accounts. This type of security devices provides the highest level of multifactor authentication of user accounts with Twitter, Facebook, Gmail, GitHub, Dropbox, Dashlane, Salesforce, Duo, Centrify and hundreds more HOTP, U2F, and FIDO2 compatible services. No additional tools or applications are required, and the login process is simple and reliable. Just insert the Security Key into a USB slot and authenticate with a simple touch. The security key does not require a battery nor network connectivity - it is always on and accessible.
Specifications
| Model Number | Token2 T2F2-PIN+Octo |
| Button | 2 x capacitive interface buttons (one on each side) |
| Functions | FIDO U2F + FIDO2.1 WebAuthn + HOTP (HID) + TOTP (with a companion app) |
| Embedded security algorithm | ECDSA , SHA256, AES, HMAC, ECDH |
| SSH with FIDO Support | ecdsa-sk & ed25519-sk |
| Interface type | NFC, USB-A and USB-TypeC |
| Firmware | FIDO 2.1 Token2 PIN complexity enforcement with 8-digit minimum |
| Maximum FIDO2.1 Resident keys | 300 |
| Maximum OTP profiles | 50 TOTP/HOTP via the app + 1 HOTP via HID |
| Lifetime | At least 10 years |
| Programming cycles | 100,000 times |
| Communication protocol | CTAP2, HID, NFC |
| Working voltage | 5.0V DC |
| Input Currency | 35mA |
| Power | 0.18W |
| Working temperature | -10℃ - 50℃ |
| Dimensions | 42.1 mm x 17 mm x 6 mm |
| Storage temperature | -20℃ - 70℃ |
Enhanced Water Resistance
This model is featuring a specialized PCB (Printed Circuit Board) coating for enhanced water resistance. This protective coating ensures durability against water ingress, safeguarding your data in any environment.TOTP Feature
T2F2-PIN+ Security keys can securely store the secrets for your TOTP profiles, but requires a special app (available for Android, iPhone and Windows as well as a cross-platform Python tool allowing to run the companion app under Linux, macOS and similar systems) to generate the OTPs.
Operating Systems and Browsers Support
For detailed information on how FIDO2 authentication is supported across different operating systems and browsers, including specific considerations and limitations, please visit our comprehensive guide
Blog
03-12-2024
Automated FIDO2 Registration for Entra ID
At Token2, we work to provide organizations with easy-to-use tools. We're excited to share our new manual on FIDO2 Key Automated Registration for Entra ID.
25-11-2024
Shipping to Ukraine: Our New Partnership with Nova Post
After encountering issues with other carriers, we partnered with Nova Poshta for deliveries to Ukraine. Successful test shipments now allow us to proudly offer faster, more reliable delivery with better tracking and service for our Ukrainian customers.
22-11-2024
Self-Service for Hardware OATH Tokens in Entra ID with SHA256 Support
A recent update to Microsoft Entra ID now allows end-users to self-service hardware OATH tokens, removing the need for administrators to manually activate them. Admins can upload hardware tokens into a "public repository" via Graph API, allowing users to assign tokens to their accounts independently.