Simple Hardware Token

Simple OTP (one-time password) hardware tokens are available at no cost for anyone who does not have a smart phone or other 2-Step device. You can use a token to generate passcodes over and over again, but each passcode is only good to use one time. We recommend that you use a smart phone with Duo Push for the CalNet 2-Step.

Obtaining a Token

If you need a Simple Hardware Token, you can pick one up on campus at the following locations:

Student Technology Services (STS)

See: for open hours.


  • Moffitt Library, 4th floor
  • Eshleman Hall, 1st floor lobby (2465 Bancroft Way, Berkeley, CA 94720)

IT Client Services (ITCS)

You must submit a ticket to to set up an appointment to obtain a hardware token. You can also submit a ticket for ITCS to ship a token directly to your address. 

  • 1608 Fourth St, Berkeley, CA 94710

UCB Retirement Center (UCBRC)

Subscribers to retiree email service and campus emeriti can email to request a token.

Using a Token

If you already have a Simple Hardware Token, you must register it before you can use it:

Step 1: Register your Simple Hardware Token

  1. Register your token using this form:

  2. You will receive an email notification when your token is registered.

Step 2: Try it out

  1. Once you have received confirmation that your token is registered, go to’s Manage 2-Step Verification page.

  2. Enter your CalNet ID and passphrase to log in as usual to the CAS screen.

  3. When the 2-Step screen appears, click the Enter a Passcode button. 

  1. Next, tap the red power symbol on your Simple Hardware Token. A numerical code will appear on the token’s screen.

  2. If you hold down the red button too long, it will display all; 8s. Let the token be until the screen clears, and try again.

  1. Type the code that appears on your token into the field for the passcode on the 2-Step screen

  2. If you want this web browser on this computer to remember you and not prompt you for 2-Step for 30 days, click the checkbox to Remember me...

  3. Click Log In.

Ta da!  You have successfully done the 2-Step.

Note: you will see your token listed as a device when you log in to the 2-Step Device Control Panel.

Step 3: Print your backup passcodes

Before leaving, please take a moment to click the blue Get Backup Passcodes button, and print your codes. Click here to find out more about backup passcodes.