Main Content
Instructions for Two-Factor Authentication with AppTokens (TOTP Tokens)
The app token is a time-based one-time password token via authentication app on smartphone/tablet.
Activation and use of the App-Token
This only affects you if you received the app token in the mail or picked it up in person.
- Install an authentication app (e.g. 2FAS [recommended], Google Authenticator, Red Hat FreeOTP, Sophos Authenticator, SAP Authenticator, Microsoft Authenticator) on your smartphone/tablet via App Store or Play Store.
- Set up a new token in the authentication app (e.g. via "Create token" or "+"). To do this, select the barcode/QR code scanning function integrated in the app for easy transfer of the token data.
- Scan the QR code you received. (You should now have a new entry in the authentication app).
- Please go to the activation page
- Please agree to the terms of use and continue. A new form will appear.
- Enter your Staff/Students username. e.g. mueller
- Select the appropriate user group (realm).
- Now go to the field with the password and 2FA.
Here you enter your password first and directly behind it the displayed six-digit number from the authentication app. - Then please press the Continue button.
Info: Please make sure that there is enough time left to process the code.
Creation of an app token (TOTP token)
- To use the service, you have received an email with brief instructions on how to log in to the 2FA-Portal.
- Install an authentication app (e.g. 2FAS [recommended], Google Authenticator, Red Hat FreeOTP, Sophos Authenticator, SAP Authenticator, Microsoft Authenticator) on your smartphone/tablet via App Store or Play Store.
- Log in to the 2FA-Portal.
- In the 2FA-Portal, you create a so-called app token (TOTP token).
- To do this, select the "Token issue" item in the menu and then select APP-Token.
- A QR code appears.
- Using the authentication app on your smartphone/tablet, scan the QR code that appears.
- In the authentication app of your smartphone/tablet you should now find a token with the name "Philipps-Universität Marburg", which will show you a new one-time password every 30 seconds based on time.
- You can now use the token for login using two-factor authentication in the future.
Logging in to two-factor authenticated services
- On your smartphone/tablet, open the authentication app. The token "Philipps-Universität Marburg" shows you the currently valid one-time password.
- In the web browser (e.g. Firefox, Chrome, Safari, Internet Explorer, Edge), call up the desired two-factor authenticated service.
- In the login dialog of the two-factor authenticated service, enter the following information:
- For the user name, select your user name as usual.
- As password, enter your user password (!), directly followed by the read-off one-time password (!) of the authentication app.
- Confirm the login (e.g. with the Enter key).
- You should now be logged in. If not, check the user name, user password, one-time password and try the login again.
- If you have problems logging in, please contact your local Windows or network administrator or the IT-Servicedesk of the University Computer Center (HRZ).
Use within Marvin for pilot subject areas
- Only the one-time password is required for exam registration in Marvin.
- You will find detailed instructions in the instructions TAN list Marvin.
Locking a token
Blocking a token (e.g. when leaving the university or losing the token) is done via
- the 2FA-Portal (if you can log in there with an existing token), or
- the form Message about the current status of a token, or
- the IT-Servicedesk of the University Computer Center (HRZ).