# 4.启用 YubiKey OTP 身份验证 {% hint style="success" %} 对应的[官方页面地址](https://github.com/dani-garcia/vaultwarden/wiki/Enabling-Yubikey-OTP-authentication) {% endhint %} 要启用 YubiKey 身份验证,必须设置 `YUBICO_CLIENT_ID` 和 `YUBICO_SECRET_KEY` 变量。 如果 `YUBICO_SERVER` 未指定,它将使用默认的 YubiCloud 服务器。您可以在[这里](https://upgrade.yubico.com/getapikey/)使用默认的 YubiCloud 生成 `YUBICO_CLIENT_ID` 和 `YUBICO_SECRET_KEY`。 备注: * 要生成 API 密钥或在 OTP 服务器上使用 YubiKey,必须对其进行注册。在 [Manager CLI](https://www.yubico.com/support/download/yubikey-manager/) 或 [~~YubiKey 个性化工具~~](https://www.yubico.com/products/services-software/personalization-tools/use/)中配置好您的密钥后,然后在[这里](https://upload.yubico.com/)使用默认服务器注册。 * 由于上游的问题,服务器版本为 1.6.0 或更低的 aarch64 不支持 YubiKey 功能(请参阅 [#262](https://github.com/dani-garcia/bitwarden_rs/issues/262))。 ```shell docker run -d --name vaultwarden \ -e YUBICO_CLIENT_ID=12345 \ -e YUBICO_SECRET_KEY=ABCDEABCDEABCDEABCDE \ -v /vw-data/:/data/ \ -p 80:80 \ vaultwarden/server:latest ``` > **\[译者注]**: [YubiKey 个性化工具](https://www.yubico.com/products/services-software/personalization-tools/use/)已于 2025 年 02 月 19 日开始停用,到 2026 年 02 月 19 日正式停用。 --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://rs.ppgg.in/configuration/security/enabling-yubikey-otp-authentication.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.