Set up two-factor authentication

Here you find step-by-step instructions on how to set up two-factor authentication. You can find detailed information about your account, your password or two-factor authentication in our documentation.

Please set up at least 2 of the specified variants to prevent accidental locking out of your account (e.g. if your cell phone or the security token is damaged and can therefore no longer be used).

Authenticator App - Android and iOS

Please note: the installation is described using the privacyIDEA Authenticator app. You are free to use a different authenticator app. The apps are linked to your account in the Account Portal in the same way for all authenticators: use the app to scan the QR code in the Account Portal or enter the secret key in the app. You will find the secret key under the QR code in the Account Portal.

Further information on the authenticator app and two-factor authentication can be found in our documentation.

Install the authenticator app

  1. Open the Play Store (or App Store) on your cell phone/mobile device.
  2. Search for privacyIDEA Authenticator (NetKnights GmbH).
  3. Install the app and open it.
  4. Tap on the arrow pointing to the right to view the short info.
  5. Then tap on the green tick mark.

If you have not yet activated two-factor authentication:

  1. Log in to the Account Portal with the user ID for which you want to activate the two-factor authentication.
  2. Next to Two-factor authentication (2FA), click Enable.
  3. Open the authenticator app on your mobile device.
  4. Tap on the blue circle in the middle of the mobile device. (You may need to allow the app to take pictures and videos here).
  5. Point your cell phone camera at the QR code on the PC screen to scan it.
  6. Then enter the generated one-time password (6 digits) on the PC, which is displayed on the mobile phone/mobile device.
  7. Click on Verify. The second factor has been set up successfully.

If you have already activated two-factor authentication:

  1. Log in to the Account Portal with the user ID for which the second factor is to be set up.
  2. Click on manage next to Two-factor authentication (2FA). Your existing tokens will be displayed.
  3. Click on New token.
  4. Open the authenticator app on your mobile device.
  5. Tap on the blue circle in the middle of the mobile phone/mobile device. (You may need to allow the app to take pictures and videos here).
  6. Point your cell phone camera at the QR code on the PC screen to scan it.
  7. Then enter the generated one-time password (6 digits) on the PC, which is displayed on the mobile phone/mobile device.
  8. Click on Verify. The second factor has been set up successfully.

Security Chip

Further information on the security chip and two-factor authentication can be found in our documentation. 

Please note: As the security chip is device-bound, this variant of two-factor authentication can only be used on the device on which the security chip has been activated! It is therefore essential that you set up another second factor.

1. Activate security chip on your device

Windows Hello-Pin

  1. Enter sign in options in the Windows search field and open it. If you cannot find a search field, proceed as follows:
    1. Click on the Windows Start icon (window), and here on Settings (cogwheel).
    2. Click on Accounts and then on Sign-in options in the menu on the left.
  2. Click on Windows Hello PIN and then on Add or Set up.
  3. Confirm your identity with your password.
  4. Set up the PIN.

Information: The next time you start or unlock your PC, you will be asked for this PIN instead of the password.

Please note: this PIN is only valid for the device on which you have set it up. If you would also like to set up a PIN on another device, please follow the necessary procedure for the corresponding operating system.

Apple ID

At the moment, this variant only works with Safari on macOS. Chrome and Firefox are not supported.

You can find out how to set up the Apple ID in the macOS manual.

2. Link security chip to your account

If you have not yet activated two-factor authentication:

  1. Log in to the Account Portal with the user ID for which you want to activate two-factor authentication.
  2. Next to Two-factor authentication (2FA), click Enable.
  3. Click on Security key.
  4. Enter a personal mnemonic in the Description field.
  5. Click on set up now.
  6. Follow the instructions for your device. (The instructions differ between Windows, MacOs, Linux and their individual versions).

If you have already activated two-factor authentication:

  1. Log in to the Account Portal with the user ID for which the second factor is to be set up.
  2. Click on manage next to Two-factor authentication (2FA). Your existing tokens will be displayed.
  3. Click on New token.
  4. Click on Security key.
  5. Enter a personal mnemonic in the Description field.
  6. Click on set up now.
  7. Follow the instructions for your device. (The instructions differ between Windows, MacOs, Linux and their individual versions).

Security Token

Further information on the security chip and two-factor authentication can be found in our documentation.

If you have not yet activated two-factor authentication:

  1. Log in to the Account Portal with the user ID for which you want to activate two-factor authentication.
  2. Next to Two-factor authentication (2FA), click Enable.
  3. Click on Security key.
  4. Connect the security token to your device or hold it to your mobile device (NFC).
  5. Enter a personal mnemonic in the Description field.
  6. Click on set up now.
    • If you are using a Windows device and are prompted to set up Windows Hello, CLICK CANCEL.
  7. Follow the instructions on your device. (The instructions differ between Windows, MacOs, Linux and their individual versions).
    • Among other things, you will be instructed to touch the security token. To do this, tap the round logo/the golden area/button with your finger.

If you have already activated two-factor authentication:

  1. Log in to the Account Portal with the user ID for which the second factor is to be set up.
  2. Click on manage next to Two-factor authentication (2FA). Your existing tokens will be displayed.
  3. Click on New token.
  4. Click on Security key.
  5. Connect the security token to your device or hold it to your mobile device (NFC).
  6. Enter a personal mnemonic in the Description field.
  7. Click on set up now.
    • If you are using a Windows device and are prompted to set up Windows Hello, CLICK CANCEL.
  8. Follow the instructions on your device. (The instructions differ between Windows, MacOs, Linux and their individual versions).
    • Among other things, you will be instructed to touch the security token. To do this, tap the round logo/the golden area/button with your finger.

Password Manager: Proton Pass

Further information on Proton Pass and two-factor authentication can be found in our documentation.

1. Registration and installation of Proton Pass

  1. Open https://pass.proton.me/ and click on Create a Proton account.
  2. Select the Proton Free option.
  3. Enter your e-mail address and choose a password (note: please do NOT use the same password as for your university account).
  4. Click on Start using Proton Pass now. A new window will open.
  5. Enter the verification code you received by email and click Verify.
  6. In the Secure your account window, click Download PDF to get the Recovery kit. Keep this file safe! Follow the Safe storage tips on the PDF.
  7. Select I understand that if I lose my recovery details, I may permanently lose access to my account and click Continue.
  8. Confirm the installation of Proton Pass (add it as an add-on to your browser).
  9. You can now log in to your Proton Pass account.

You can find more information about using Proton Pass at https://proton.me/support/use-pass-web.

2. Link Proton Pass to your account

If you have not yet activated two-factor authentication:

  1. Log in to the Account Portal with the user ID for which you want to activate two-factor authentication.
  2. Next to Two-factor authentication (2FA), click Enable.
  3. Click here under the QR code to copy the secret key*.
  4. Log in to https://pass.proton.me.
  5. Click on the plus symbol at the top right.
  6. Click on Login.
  7. Enter the following data:
    • Title: give the factor a name that is meaningful to you.
    • Username: leave this field empty.
    • Password: leave this field empty.
    • *2FA secret key (TOTP): enter the secret key from your account portal.
    • Websites: https://idp.uibk.ac.at/
    • Note: if desired.
  8. Click on Create login to save your details.

 

If you have already activated two-factor authentication:

  1. Log in to the Account Portal with the user ID for which the second factor is to be set up.
  2. Click on manage next to Two-factor authentication (2FA). Your existing tokens will be displayed.
  3. Click on New token.
  4. Click here under the QR code to copy the secret key*.
  5. Log in to https://pass.proton.me.
  6. Click on the plus symbol at the top right.
  7. Click on Login.
  8. Enter the following data:
    • Title: give the factor a name that is meaningful to you.
    • Username: leave this field empty.
    • Password: leave this field empty.
    • *2FA secret key (TOTP): enter the secret key from your account portal.
    • Websites: https://idp.uibk.ac.at/
    • Note: if desired.
  9. Click on Create login to save your details.

Detailed information on your specific operating system (macOS or Windows) and browser can be found at https://proton.me/support/pass-2fa.

Nach oben scrollen