Simple Hardware Token

A Simple OTP (One-Time Password) hardware token is a security device that generates a unique, single-use code for CalNet 2-Step MFA. You can use a token to generate passcodes repeatedly, but each passcode works only once. We recommend using a smartphone with Duo Push for the CalNet 2-Step.

Simple hardware tokens are no longer available on campus. You can still use a simple hardware token as your 2-Step device if you have one. If you do not have a smartphone and need a device to complete 2-Step MFA,  you may request a Security Key.

If you no longer need your simple hardware token, return it by dropping it off at STS. Visit https://studenttech.berkeley.edu/techsupport for current locations and hours. You can also dispose of the token via an appropriate recycling or e-waste program.

Using a Simple Hardware Token

If you already have a Simple Hardware Token, you must register it before you can use it:

Step 1: Register your Simple Hardware Token

  1. Register your token using this form: https://docs.google.com/forms/d/e/1FAIpQLSdk6SWJGMMzuJQwIUJ9y-eWcCS4bdGyIeycfXyW6yUa-zPLMQ/viewform

  2. You will receive an email notification when your token is registered.

Step 2: Try it out

Once you have received confirmation that your token is registered, go to mycalnet.berkeley.edu’s Manage 2-Step Verification page.

  1. Enter your CalNet ID and passphrase to log in as usual.
  2. When prompted to 2-Step, click the Security Key or Hardware Token button. *If you are automatically logged in and the 2-Step prompt is bypassed, try either clearing cache/cookies or using an incognito browser.
  3. Next, tap the red power symbol on your Simple Hardware Token. A numerical code will appear on the token’s screen.
    1. If you hold down the red button too long, it will display 888888. Let the token be until the screen clears, and try again.
  4. Type the code that appears on your token into the field for the passcode on the 2-Step screen.
  5. Click Verify

Ta da!  You have successfully done the 2-Step.

Note: You will see your token listed as a device when you log in to the 2-Step Device Control Panel.

Step 3: Print your backup passcodes

Before leaving mycalnet.berkeley.edu, please take a moment to click the blue Get Backup Passcodes button, and print your codes. Click here to find out more about backup passcodes.