Dashlane supports the FIDO Alliance™ universal two-factor (U2F) authentication standard, and we have partnered with Yubico, the provider of U2F YubiKeys. FIDO U2F is a convenient and secure way to complete two-factor authentication, freeing you from having to hunt for a code whenever you need to authenticate your Dashlane account.
After adding a U2F security key to your Dashlane account, and with nothing else than a simple touch (depending on the U2F security key model you are using), your key will execute a public and private key exchange, successfully authenticating you into your Dashlane account.
Note that while your U2F security key replaces having to enter 2FA codes, it does not replace your two-factor authentication app. Should you lose your key, you will be asked to enter the code from your 2FA app.
- What is U2F and what it protects you from
- How to add a U2F security key to your Dashlane account
- How to sign in to your Dashlane account with your U2F security key
What is U2F and what it protects you from
Dashlane was the first password manager to support U2F, an innovative and universal two-factor authentication standard, backed by Yubico and the FIDO Alliance. U2F is an open authentication standard that brings convenience and security to your Dashlane account by allowing you to complete two-factor authentication (2FA) via a security key rather than having to enter codes generated by a two-factor authentication application.
Real-time challenge-response schemes like U2F address vulnerabilities with one-time passwords (OTP), such as phishing and various forms of man-in-the-middle attacks. As the legitimate server is issuing the challenge, if a rogue site or middle-man manipulates the flow, the server will detect an abnormality in the response and deny the transaction.
You can also find more information on U2F and Dashlane with our beginner's guide to using two-factor authentication and U2F to secure your passwords.
If you do not possess a security key that is U2F-compatible, you will not be able to complete the steps outlined below. If you possess a security key that is compatible with both OTP and U2F, we strongly recommend that you do not not use its OTP function to replace your two-factor authentication app.
Also, please note that two-factor authentication via U2F is a Premium feature only. This means that you will only be able to add a U2F security key to your Dashlane account if you have a Premium subscription. Pre 2.0 status and Premium trials do not unlock our U2F feature.
How to add a U2F security key to your Dashlane account
In order to add a U2F security key to your Dashlane account, two-factor authentication must already be enabled. If you have yet to enable two-factor authentication, please refer to these instructions.
To begin, please open the Preferences of your Dashlane app (from the Tools menu on Windows or from the Dashlane menu on Mac OS X), go to the Security tab and to the two-factor authentication sub-tab, and make sure that two-factor authentication is set to ON.
Then click on the Add button next to U2F security key. You will then be able to choose a name for your U2F security key.
After choosing a name, you will be asked to plug in your U2F security key and tap on the key button or gold disk, depending on your key. If your security key was already plugged in and does not have a button or gold disk, you will have to unplug and then plug it back in again.
A few seconds later, Dashlane will prompt the message below informing you that your U2F security key has been added.
If you wish to review the keys that have been added to your Dashlane account or add another key, please click on the Edit button next to U2F security key.
How to sign in to your Dashlane account with your U2F security key
Now that two-factor authentication via U2F is all set up, you can start using it.
It is important to note that your U2F security key assumes whatever security level you chose when setting-up two-factor authentication. Thus, you will need to authenticate with your security key either only when adding a new device, or else each time you log in to Dashlane. If you wish to change this setting, please disable two-factor authentication, and enable it again while choosing your preferred setting. Find more information here.
On Windows or Mac OS X
- To log in to Dashlane, open Dashlane and first enter your Dashlane email address
- Enter your Master Password and click on Log in
- At last, insert the U2F security key that has been added to your Dashlane account and tap on the button or gold disk, depending on your key. If your security key was already plugged in and does not have a button or gold disk, you will have to unplug and then plug it back in again.
On Android or iOS
For instructions about using a U2F security key on your Android or iOS device, please see How to sign in on mobile using your U2F security key.
On the web app
Unfortunately, you will not be able to use two-factor authentication via your U2F security key to sign in to our web app. You will still have to use security codes generated by the two-factor authentication app on your phone. To do so:
- Click here to open our web app, provide your Dashlane email address and click on Log in
- Now open your two-factor authentication app on your mobile device
- Copy the 6-digit code shown in your two-factor authentication app into the Security code field on the web app
- Finally, enter your Master Password in the first field, then choose a name for this computer or device if you wish (e.g. My laptop, Jim's computer) and click Log in
How to delete a U2F security key from your Dashlane account
Deleting a U2F security key can only be done from Dashlane on Windows or Mac OS X, and only if two-factor authentication is enabled for your account.
In order to remove an existing U2F security key from your Dashlane account, please go to the Security tab in Dashlane's Preferences, and to the two-factor authentication sub-tab. From there, please click on the Edit button next to U2F security key.
There, you will find a list containing all U2F security keys added to your Dashlane account. Simply click on the Delete button corresponding to the key you wish to remove.
Please note that this will only delete the U2F security key from your account and will not disable two-factor authentication. See here for more information on the process to disable two-factor authentication.
How to sign in to your Dashlane account if you lost your U2F security key
If you lost your U2F security key, you can always sign in to Dashlane with your two-factor authentication app instead. To do so, please click on Use mobile authenticator instead from the Dashlane login window.
You will then be prompted to enter a code generated by the app you used to enable two-factor authentication, as shown on the example below.
If you do not have access to the device you set-up two-factor authentication with either, please click here to review the list of options available to you.