How does login with 2FA work?

To log in to the 2FA portal, first enter your username (student/staff account), the corresponding realm (user group), and your password. Directly after your password comes your 2FA token without any space. You can use one of three tokens: An APP token (e.g. generated via the University of Marburg app), a YubiKey (by pressing the button), or a TAN from your TAN list (paper or TAN token).

What token formats does the login accept?

The 2FA portal accepts three token formats: (1) APP token: 6-8 digit numbers that change every 30 seconds (e.g. via the University of Marburg app). (2) YubiKey: A long character string generated by pressing the YubiKey button. (3) TAN token: A 6-8 digit number from your TAN list (paper token or TAN token). These TANs are consumed after use.

What is the realm selection for?

The realm selection defines your user group and thus your area in the system. Select "students" if you are a student, "staff" for university employees, or "hrz" for special users of the computing center. The selection is important because each group has different permissions and access options.

Why is my login not working?

The most common errors are: (1) Token expired: APP tokens and YubiKey codes are time-bound (valid for approx. 30-60 seconds). Enter the token quickly after your password. (2) Wrong token: You are using an invalid TAN or entering the code incorrectly. (3) Wrong realm: Make sure you have selected the correct realm (students/staff/hrz). (4) Token disabled: If your token has been disabled, contact the IT service desk.

Can I use APP tokens and TAN tokens at the same time?

Yes, you can have multiple token types registered at the same time. When logging in, simply enter the 2FA code you have available. It is recommended to have at least one APP token as your primary token and one backup token (TAN or YubiKey). If a token is lost or no longer works, you can switch to your backup token.

Why does my old paper list from the exam office have a serial number starting with "TAN"?

Paper lists that were previously issued by the exam office were migrated to the central 2FA system. During import, these paper lists received a pseudo serial number that begins with the prefix "TAN" for compatibility reasons. This serial number is used exclusively for identification of the token in the system and CANNOT be used for login. To log in, continue to use the printed TANs on your paper list.

Main content

Login required

Frequently asked questions about login

How does login with 2FA work?

To log in to the 2FA portal, first enter your username (student/staff account), the corresponding realm (user group), and your password. Directly after your password comes your 2FA token without any space. You can use one of three tokens: An APP token (e.g. generated via the University of Marburg app), a YubiKey (by pressing the button), or a TAN from your TAN list (paper or TAN token).
What token formats does the login accept?

The 2FA portal accepts three token formats: (1) APP token: 6-8 digit numbers that change every 30 seconds (e.g. via the University of Marburg app). (2) YubiKey: A long character string generated by pressing the YubiKey button. (3) TAN token: A 6-8 digit number from your TAN list (paper token or TAN token). These TANs are consumed after use.
What is the realm selection for?

The realm selection defines your user group and thus your area in the system. Select "students" if you are a student, "staff" for university employees, or "hrz" for special users of the computing center. The selection is important because each group has different permissions and access options.
Why is my login not working?

The most common errors are: (1) Token expired: APP tokens and YubiKey codes are time-bound (valid for approx. 30-60 seconds). Enter the token quickly after your password. (2) Wrong token: You are using an invalid TAN or entering the code incorrectly. (3) Wrong realm: Make sure you have selected the correct realm (students/staff/hrz). (4) Token disabled: If your token has been disabled, contact the IT service desk.
Can I use APP tokens and TAN tokens at the same time?

Yes, you can have multiple token types registered at the same time. When logging in, simply enter the 2FA code you have available. It is recommended to have at least one APP token as your primary token and one backup token (TAN or YubiKey). If a token is lost or no longer works, you can switch to your backup token.
Why does my old paper list from the exam office have a serial number starting with "TAN"?

Paper lists that were previously issued by the exam office were migrated to the central 2FA system. During import, these paper lists received a pseudo serial number that begins with the prefix "TAN" for compatibility reasons. This serial number is used exclusively for identification of the token in the system and CANNOT be used for login. To log in, continue to use the printed TANs on your paper list.

Main content

Login required

Frequently asked questions about login

Inhalt ausklappen Inhalt einklappen How does login with 2FA work?

Inhalt ausklappen Inhalt einklappen What token formats does the login accept?

Inhalt ausklappen Inhalt einklappen What is the realm selection for?

Inhalt ausklappen Inhalt einklappen Why is my login not working?

Inhalt ausklappen Inhalt einklappen Can I use APP tokens and TAN tokens at the same time?

Inhalt ausklappen Inhalt einklappen Why does my old paper list from the exam office have a serial number starting with "TAN"?