Set up a Guomi USB key for your account
After you attach a Guomi USB key, you can use it for secondary authentication during logon. You can use either a virtual multi-factor authentication (MFA) device or a Guomi USB key, but not both.
Prerequisites
The Guomi USB key feature is available only to whitelisted users. To request access, submit a ticket.
Before you use a Guomi USB key, ensure that the following requirements are met:
Ensure that you have purchased a Guomi USB security key from an authorized channel.
Ensure that you have attached a Guomi U-Shield certificate in the Certificate console.
The correct driver for the Guomi USB key is installed. You can download the driver from the USB key manufacturer's website.
Background information
This feature is in beta. If this feature does not appear in the Account Center, your account is not on the beta test list.
Attach a Guomi USB key
Log on to the Alibaba Cloud Account Center. On the Account Security page, find the Guomi USB key option and click Modify.
Identity verification is required to attach.
Confirm that the USB key environment is successfully verified.
Click Confirm Binding. In the dialog box that appears, enter the USB key password.
If the password is correct, a message indicates that the key is successfully attached.
Verify the Guomi USB key
The password page may vary depending on the Guomi USB key manufacturer. For more information, see the manufacturer's product manual.
During the attachment and secondary authentication processes, do not unplug the USB key from your computer.
Some USB keys and drivers support only the Windows operating system. Before you purchase a USB key, confirm the system requirements with the manufacturer.
You cannot attach both a virtual MFA device and a Guomi USB key to an account at the same time.
After you attach a USB key to your account, you can use it for authentication during logon and for secondary authentication.
Insert the USB key into your computer and select Guomi USB Key Verification.
Click Next to verify the USB key. A success message appears, as shown in the following figure.
Enter the Guomi USB key password to log on.
After the verification is successful, the secondary authentication is complete.
Detach the Guomi USB key
You cannot detach the key yourself in the Account Center. To detach the key, submit a ticket and provide your identity verification documents. Our support team will detach the key for you.
Common USB key error codes
No. |
Error code |
Error description |
1 |
0x21210001 |
Certificate parsing error. |
2 |
0x21220003 |
Certificate not found. |
3 |
0x21250001 |
Failed to install the signing certificate. |
4 |
0x21250002 |
Failed to install the signing certificate. |
5 |
0x21270002 |
Failed to authenticate the CA certificate. |
6 |
0x212A0001 |
Incorrect license format. |
7 |
0x212B0001 |
No license found. |
8 |
0x212B0002 |
The license needs to be updated. |
9 |
0x02050008 |
Certificate not found. |
10 |
0x100F000C |
Signature verification failed. |
11 |
0x02020002 |
Incorrect device information. |
For more error codes, see the USB key product manual or contact the USB key manufacturer.