These two allow for:
- locking the Mac if the Yubikey is removed
- unlocking it, if the Yubikey is inserted again
Start the YubiKey personalisation tool and edit the following settings:
Now write that configuration to "configuration slot 2" of your Yubikey.
Second, you need to configure TokenLock to accept the Yubikey only, if it has the correct serial number.
Enter the TokenLock settings dialog:
Great. You're nearly done, one little thing…
Make your Yubikey your primary USB device for TokenLock
Select the USB tab and make sure, your Yubikey is marked "Has serial number".
Btw: The guys from Map-Pin software provide GREAT support for TokenLock - which can monitor
bluetooth devices to lock/unlock your Mac… give it a try :-)