Initial Activation of 2FA on a Mobile Device

Take a look at the video (3 minutes), too: Video

If you are not sure, ask someone who has already performed this process to assist you.

You will need an authenticator app to set up a token on your mobile phone; please install this before starting the activation process.
We recommend the privacyIDEA Authenticator from Netknights, but you can also use the Google or Microsoft Authenticator etc.

Please read through these instructions before you start the activation and don't forget about the last step, the verification!

Activation of the first token

  1. On your computer, open the privacyIDEA website of TU Graz.
  2. Enter the following:
    1. in the field TU Graz Username your TUGRAZonline username
    2. in the field Onetime-Password the registration code, which you have either received by email (external persons) or read out from TUGRAZonline (Account Status, staff members and students).

    Log In

  3. Click on Log In.

  1. Enter a description that uniquely identifies the token, for example, by specifying the device on which the token is to be used,

    Enroll and click on Enroll Token.

  1. You will now be shown a QR code.

    QR-Code

  2. Take your smartphone and scan the QR code using the installed app.

Verification

Without this step you will have a token that generates codes, but this token is not verified and therefore the codes (OTPs) will not work!

  1. The app will now display a 6 digit number (code). If you are running out of time (see in the circle on the right), wait a few seconds for the next code:

    Code

  2. Enter this number in the confirmation field on the privacyIDEA website

    Verify

    click Verify Token.

The 2FA is now activated for you and you can log out and close the privacyIDEA website.

Important: The registration code is no longer valid after the 2FA activation and cannot be used again.
It can take up to one hour for our systems to activate the 2nd factor, but you can test on the privacyIDEA website if your 2nd factor works by logging in with username and 2nd factor.

We strongly advise you to activate a 2nd token on another device immediately, so that you can activate a token on your new cell phone again, e.g. in case of a defect of your cell phone.



And follow the description you just read.