Dropbox is a cloud storage and file-sharing service that allows users to store, access, and share files across multiple devices. It enables users to back up their files online, freeing up space on their devices, and collaborate on projects with others. Dropbox offers both personal and business plans with features like file recovery, password protection, and version history. 

Once you have registered your FIDO2 key with DropBox, the key will be ready to be used as an authentication method when accessing your account.

Enabling 2FA authentication

Before a FIDO2 key can be used with DropBox you will need to ensure that 2FA is enabled, and a backup authentication method has been provided (DropBox will not allow FIDO2 passkey authentication until a backup authentication method has been provided).

The following guide provides an example of how to enable 2FA authentication, and how to add a programmable token;

• Adding a programmable token as a backup authentication method ...

  Log in to your DropBox Account, then click on your user icon and select the option "Settings";

  

  
  

  From the account details page select the tab "Security";

  

  Next you will need to enable 2-factor authentication (by clicking on the on/off slider);

  

  You will then be asked to supply your user password, enter your password, then click ;

  

  
  

  A new window will now open asking you to specify which 2fa solution to use - select "Authenticator App", then click 

  

  
  

  A QR code containing seed data that will be transferred to your programmable token will now be displayed;

  

  You can use the QR code to program our programmable tokens using the instructions found in the following procedure;

  • Click here to expand...

    To program a SafeID/Diamond or SafeID/Pro token with a QR code, launch the SafeID/Diamond programming tool.  

    

    
    

    Click the Scan QR Code button 

    Click here for instructions on Scanning QR Codes ...

    Before you scan the QR code please ensure that the clock on your computer is displaying the correct date and time.

    You can scan the screen for a QR code, or load from a file.

    

    If you are scanning the barcode on the screen please ensure that the QR code is not obscured by other windows, and if you have more than one monitor please ensure that both the app and the QR code are displayed on the main display (display 1).

    If you still have difficulty in scanning the QR code double check you only have the one instance of the app running, and that it is the latest version of the app.  In most cases when there are issues with scanning of the QR code the most likely cause is the QR code contains the wrong data and may need to be regenerated.  To test the QR code you could check that the code works correctly with the authenticator app it is intended for (e.g microsoft authenticator), and if this fails then you know that the QR code will need to be regenerated.

    

    
    

    Select Scan Screen.

    If succeeded, the Seed box should be filled with the token's seed data.

    

    
    

    Now, select your smart card reader from the Reader drop-down list, e.g. "HID OMNIKEY 5427 CK"

    

    
    

    Press the Connect button

    

    
    

    Now, switch on a SafeID token and place it on the reader. 

    The tool will read out the token's serial number and time, and display them:

    

    
    

    If you want to correct the clock on the token, then leave the "Sync Token Clock" checked, but first ensure the time on your pc is set correctly.

    Press the Burn button

    

    
    

    The token is successfully programmed.

    Switch off the token and switch it on again to generate a new code (the token may only use the new seed after being reset)

    

    Related Articles

    • Programmable Tokens and keys
    • Hardware Tokens
    • NFC Card Reader
    • Checking and resolving time drift on a windows computer
    • How to generate QR codes for authenticator apps or programmable tokens
    • How to extract seed data from a QR code using a PC

  Verifying your token

  Once you have programmed your token you will need to verify it with DropBox.

  At the "Confirmation Code:" prompt, copy a 6-digit code from your newly programmed hardware token , then click ;

  

  Once verified the programmable token is ready to supply OTP codes when you next login to your DropBox account;

  

  Related Articles

  • OTP Tokens
  • Programmable Tokens and keys
  • NFC Smart Card Reader
  • How to use SafeKey as a FIDO2 passkey with DropBox

If you don't have a programmable token you can use a similar process to add an authentication app.

Once 2FA has been enabled, and a backup authentication method added, you will be ready to register your Fido2 key as a passkey authentication option.

Register your FIDO2 key in your DropBox account

The following procedure can be used to register your Fido key; 

• Click here for instructions for how to register your FIDO2 key with DropBox ...

  Once 2FA has been enabled (and a backup method added), you will be ready to register your Fido key.

  Log in to your DropBox Account, then click on your user icon and select the option "Settings";

  

  
  

  In the section "Security Keys" select the option "Add";

  

  
  

  After you click on the "Add" button you will be prompted to begin setup of your Fido2 key, click ;

  

  
  

  You will now be prompted to enter your DropBox account password, type in your password then click ;

  

  
  

  Insert your fido2 key into an available USB port then click ;

  

  
  

  You will be asked to touch the button on your key (if your model has a fingerprint reader you may be asked to provide a finger swipe instead), click ;

  

  
  

  You will now be prompted to specify the device that is to be added as a passkey.

  Select the option "Security key", then click ;

  

  
  

  You will now be prompted to specify the device that is to be added as a passkey.

  Select the option "Security key", then click ;

  

  
  

  You will be asked to touch the button on your key (if your model has a fingerprint reader you may be asked to provide a finger swipe instead), click ;

  

  
  

  You will now be prompted to enter the PIN code for your Fido2 key.

  At the prompt "Security Key PIN", enter the PIN code, then click . 

  (in the case of a Fido key with a fingerprint reader you will need to swipe your finger on the key);

  

  
  

  You are now prompted to touch the key (to prove you are present and giving permission for the key to be used).

  Touch the necessary area on your Fido key;

  

  
  

  Once you have touched the Fido2 Key will be added as a passkey authentication method to your DropBox account, click "OK";

  

  
  

  Finally you are prompted to name the Fido2 key, enter a suitable name for your key then click ;

  

  
  

  Your FIdo key will now be used as an authentication option next time you log in to your DropBox account, and the key count will be incremented to indicate the addition of the newly registered Fido key;

  

Signing in to an DropBox account with a FIDO2 key

Once you have registered you FIDO2 key with DropBox the key will be ready to be used as an authentication method when accessing your account;

• Click here for an example of accessing DropBox using your Fido2 key ...

  First Log in to your DropBox Account,, then after supplying your username and password you will be prompted to sing in with your passkey;

  
  

  

  
  

  You will be asked to touch the button on your key (if your model has a fingerprint reader you may be asked to provide a finger swipe instead);

  

  
  

  Once the key has been touched you will be logged in to your DropBox account.

  
  

  
  

Related Articles

• FIDO U2F Security Keys
• Using programmable hardware tokens with DropBox MFA