Main Content

Instructions for two-factor authentication with app token (TOTP token)

The app token is a time-based one-time password token via authentication app on smartphone/tablet.

Activation and use of the app token

This only applies to you if you have received the app token by post or collected it in person.

• 2FA portal

• Install an authentication app on your smartphone/tablet via the App Store or Play Store (e.g. 2FAS [recommended], Google Authenticator, Red Hat FreeOTP, Sophos Authenticator, SAP Authenticator, Microsoft Authenticator).
• Set up a new token in the authentication app (e.g. via "Create token" or "+"). To do this, select the barcode/QR code scanning function integrated into the app for easy transfer of the token data.</li
• Scan the QR code you have received. (You should now have a new entry in the authentication app.)
• Please go to the activation page
• Please agree to the terms of use and continue. A new form will appear
• Enter your staff/student username. e.g. mueller
• Select the appropriate user group (realm).
• Now go to the field with the password and 2FA.
  First enter your password and then enter the displayed six-digit number from the authentication app directly behind it.
• Then press the Activate button.
  

  Info:Please make sure that there is still enough time to process the code.

Creation of an app token (TOTP token)

• To use the service, you have received an email with brief instructions on how to log in to the 2FA portal.
• Install an authentication app on your smartphone/tablet via the App Store or Play Store (e.g. 2FAS [recommended], Google Authenticator, Red Hat FreeOTP, Sophos Authenticator, SAP Authenticator, Microsoft Authenticator).
• Log in to the 2FA portal.
• In 2FA portal you create a so-called app token (TOTP token).
  • To do this, select "Create token" in the menu and then select APP token.
  • A QR code appears.
• Scan the displayed QR code with the authentication app on your smartphone/tablet.
• You should now find a token labelled "Philipps-Universität Marburg" in the authentication app of your smartphone/tablet, which displays a new one-time password every 30 seconds based on the time.
• You can now use the token to log in using two-factor authentication in future.</li

Login to two-factor authenticated services

• Open the authentication app on your smartphone/tablet. The token "Philipps-Universität Marburg" shows you the currently valid one-time password.</li
• In the web browser (e.g. Firefox, Chrome, Safari, Internet Explorer, Edge), call up the desired two-factor authenticated service.
• Enter the following information in the login dialogue of the two-factor authenticated service:
  • Select your user name as usual.
  • Enter your user password (!) as the password, directly followed by the one-time password (!) read from the authentication app.
• Confirm the login (e.g. with the Enter key).
• You should now be logged in. If not, check your user name, user password and one-time password and try logging in again.</li
• If you have problems logging in, please contact your local Windows or network administrator or the IT-Servicedesk des HRZ.

Use within Marvin

• Only the one-time password is required for exam registration in Marvin
• You can find detailed instructions in the Instructions 2FA for Marvin.

Suspending a token

• the 2FA portal (if you can log in there with an existing token), or
• the form for reporting the current status of a token, or
• the IT service desk of the HRZ.