Email
Main Content

Instructions for Two-Factor Authentication with AppTokens (TOTP Tokens)

The app token is a time-based one-time password token via authentication app on smartphone/tablet.

Activation and use of the App-Token

This only affects you if you received the app token in the mail or picked it up in person.

  • Install an authentication app (e.g. 2FAS [recommended], Google Authenticator, Red Hat FreeOTP, Sophos Authenticator, SAP Authenticator, Microsoft Authenticator) on your smartphone/tablet via App Store or Play Store.
  • Set up a new token in the authentication app (e.g. via "Create token" or "+"). To do this, select the barcode/QR code scanning function integrated in the app for easy transfer of the token data.
  • Scan the QR code you received. (You should now have a new entry in the authentication app).
  • Please go to the activation page
  • Please agree to the terms of use and continue. A new form will appear.
  • Enter your Staff/Students username. e.g. mueller
  • Select the appropriate user group (realm).
  • Now go to the field with the password and 2FA.
    Here you enter your password first and directly behind it the displayed six-digit number from the authentication app.
  • Then please press the Continue button.

    Info: Please make sure that there is enough time left to process the code.

Creation of an app token (TOTP token)

  • To use the service, you have received an email with brief instructions on how to log in to the 2FA-Portal.
  • Install an authentication app (e.g. 2FAS [recommended], Google Authenticator, Red Hat FreeOTP, Sophos Authenticator, SAP Authenticator, Microsoft Authenticator) on your smartphone/tablet via App Store or Play Store.
  • Log in to the 2FA-Portal.
  • In the 2FA-Portal, you create a so-called app token (TOTP token).
    • To do this, select the "Token issue" item in the menu and then select APP-Token.
    • A QR code appears.
  • Using the authentication app on your smartphone/tablet, scan the QR code that appears.
  • In the authentication app of your smartphone/tablet you should now find a token with the name "Philipps-Universität Marburg", which will show you a new one-time password every 30 seconds based on time.
  • You can now use the token for login using two-factor authentication in the future.

Logging in to two-factor authenticated services

  • On your smartphone/tablet, open the authentication app. The token "Philipps-Universität Marburg" shows you the currently valid one-time password.
  • In the web browser (e.g. Firefox, Chrome, Safari, Internet Explorer, Edge), call up the desired two-factor authenticated service.
  • In the login dialog of the two-factor authenticated service, enter the following information:
    • For the user name, select your user name as usual.
    • As password, enter your user password (!), directly followed by the read-off one-time password (!) of the authentication app.
  • Confirm the login (e.g. with the Enter key).
  • You should now be logged in. If not, check the user name, user password, one-time password and try the login again.
  • If you have problems logging in, please contact your local Windows or network administrator or the IT-Servicedesk of the University Computer Center (HRZ).

Use within Marvin for pilot subject areas

  • Only the one-time password is required for exam registration in Marvin.
  • You will find detailed instructions in the instructions TAN list Marvin.

Locking a token

Blocking a token (e.g. when leaving the university or losing the token) is done via