Two-factor authentication

This page is about two-factor authentication and how you as an employee or student at NTNU can sign up for it. Most employees now have adopted two-factor authentication. For students, there will be a requirement to activate this from June 21, 2021.

Norsk versjon - Tofaktorautentisering

Topic page about IT services | Pages labeled with two-factor

What is two-factor authentication? #

Two-factor authentication means that you use two factors (proof) to confirm your identity when logging in. The two factors are usually something you know, ie your password, and and something you have, such as a code chip or a mobile phone. In this context, the second factor is usually an app on your mobile phone.

Why do we introduce two-factor authentication? #

The use of two factors makes it much more difficult for unauthorized persons to access the system in question, even in cases where the username and password are lost. Two-factor authentication is an extra layer of security that can prevent misuse of your user account. Statistics show that two-factor authentication reduces the risk of misuse by 99.9%.

NTNU initially uses two-factor authentication for services related to Microsoft 365 and Blackboard.

How do I sign up for two-factor authentication? #

  1. You need to start the activation from your PC
  2. Make sure you have your mobile phone available before proceeding.
  3. Click on the button below and follow the instructions in the form.

This video and this step by step guide will help you through the activation process.

 Activate now

The first time you log in after activation, you will be asked to set up the service. We recommend that you do this from your PC. Have your mobile phone ready. You will be automatically guided through the setup. You can choose to use SMS or an app to confirm your identity. Which of the two you choose to use is up to you, but we recommend that you use the app, as it is easier and faster to use than entering a confirmation code each time.

How to enable two-factor authentication - USB security key #

We are now launching a solution for you who cannot or will not use a private mobile phone in connection with two-factor authentication.

You can read more about this on this page: Use a security key for two-factor authentication

FAQ - Frequently Asked Questions #

What do I do when I get a new phone? #

To avoid problems with authentication when changing phones, it is a good idea to install the app on your new phone while you still have the old one in use. You will then be able to authenticate yourself from both devices in the transition.

You can set up the app on a your new phone from this page. Select "Add method" and follow the instructions. From the same page, you can delete the association with apps on devices that are no longer in use.

NOTE: If you have lost or no longer have access to your phone, you must ask Orakel Support Services for help setting up two-factor authentication on a new phone.

How often do I have to authenticate? #

This may vary depending on the equipment you use and where you are located, but the normal interval is every 20 days.

Can I use multiple authentication methods? #

Yes. You can easily add more methods and / or change the default authentication method for your user from this page.

I get asked about two-factor authentication very often #

There are several possible reasons for this. Here are some tips:

If you use Google Chrome then you can install this extension - Windows 10 Accounts

There is also an extetsion to Firefox, but you need administrative access to your compter and technical skills - Windows 10 Accounts Port 

If you use private or incognito mode in the browser then you have to log in every single time since it does not remember the login.

If you often log off and on VPN and/or use Tor browser, you will more often be asked to log in.

More information on how two-factor authentication works can be found here

Can I use an app other than Microsoft Authenticator? #

We recommend the "Microsoft Authenticator" app with one-touch authentication for Android and iOS. Google Authenticator, Yubico Authenticator and a number of other similar apps also work, but then with six-digit code and not a single tap. NTNU IT can only offer support to those mentioned above.

Do I have to use my mobile phone for two-factor authentication? #

Mobile phone with the app "Microsoft Authenticator" is the recommended method, but it is possible to use a security key for two-factor authentication instead of a mobile phone.

I am operator in NTNU Hjelp and use two-factor authentication there. Do I still have to activate? #

Yes, you still have to activate by sending in the form, but you don't have to set up the service again after activation.

Contact #

Orakel Support Services can help you if you have questions or encounter difficulties.

0 Vedlegg
5368 Visninger