After you configure 2FA via a TOTP mobile app, you can add a security key that supports the FIDO U2F standard to use for two-factor authentication on GitHub Enterprise.

Note: FIDO U2F authentication is currently only available for the Chrome browser.

  1. You must have already configured 2FA via a TOTP mobile app.
  2. Ensure that you have a FIDO U2F compatible security key inserted into your computer.
  3. In the upper-right corner of any page, click your profile photo, then click Settings. Settings icon in the user bar

  4. In the user settings sidebar, click Security. Security settings sidebar

  5. Under two-factor authentication, click Edit. Edit 2FA methods

  6. Under Security keys, click Register new device. Registering a new FIDO U2F device

  7. Type a nickname for the security key, then click Add. Providing a nickname for a FIDO U2F device

  8. When prompted, touch your security key to have it authenticate against GitHub Enterprise. Prompt for a FIDO U2F device

  9. If you're authenticating to GitHub Enterprise on an Android phone, you can use your FIDO U2F compatible security key and Google Authenticator to sign into your account with Near Field Communication (NFC).

  10. Download your recovery codes and save them in a safe place, such as a password manager. Your recovery codes are to be used in the event you lose access to your account. Download recovery codes button