Main Content
Instructions for the APP Token (TOTP Token)
🔑 What Is an App Token (TOTP)?
An App token is a Time-based One-Time Password (TOTP) generated by an authentication app on your smartphone.
- The one-time password is dynamic: Unlike a static password or a TAN token, each code is only valid for a very short period of time (typically 30 seconds).
- The one-time password is device-bound: The token is created solely on your registered device. This ensures that only you, combining your knowledge (password) and your possession (smartphone), can access your account.
- No internet connection required: The token is calculated offline on your device. You do not need a cellular data or Wi-Fi connection to retrieve the current code.
In short: The App token offers maximum security and replaces the insecure TAN list with a security code that is continuously regenerated and time-limited.
📝 Step 1: Preparation & App Installation
Before creating the token, the app must be installed and its compatibility verified.
Our Recommendation: Uni Marburg App
This app is already in use for the digital student ID and is supported by the HRZ. The 2FA module is fully compatible.
To the setup instructions for the Uni Marburg App
Alternative: 2FAS Authenticator
Should you prefer not to use the university app, we recommend the "2FAS" app.
⚠️ Not Supported!
Google Authenticator and Microsoft Authenticator no longer work because they do not support the new SHA-512 algorithm and only generate 6-digit codes.
⚙️ Step 2: Create or Activate Your Token in the 2FA Portal
Since we provide several options, please select one of the following items: