







                                                 CU Key












            ******************************************************************************************

            *
            ******************************************************************************************
            Mobile application CU Key has been developed for the purpose of increasing security for CA

            With it you can simply and reliably verify your identity while accessing university servic
            It provides modern means of two-factor authentication which significantly increases level 
            university systems which require CAS login.

            Mobile application CU Key represents an important step towards increased cyber security an
            for the academic community.



            Activation process


            1.Visit website www.ldap.cuni.cz/mfa [ URL "http://www.ldap.cuni.cz/mfa"] and log in.


              • Click on the “Turn on” button



              • Select Mobile phone application among the available options:



              • Choose QR code based on your mobile phone operation system and scan it to download the



            2.Open the mobile application CU Key.

              • Click on the Login button and enter your username and password to CAS



              • Enable notifications


              • Create PIN code for unlocking the app



              • You will see Renewal codes for account renewal.


                Please write down these codes on a different device so you can use them in the event o
                of your mobile phone.


                You may also enable biometric authentication if you use in on your device, e.g. finger





            3.Visit website that requires CAS login and two-factor authentication, e.g. www.servicedes

              "http://www.servicedesk.cuni.cz"] and log in.



            4.Select a method for the second verification factor:



            5.• You will receive notification on your mobile phone about a new request for authenticat
                app using PIN code or biometrics and confirm the request.



            6.Now, you can go back to the website www.ldap.cuni.cz/mfa [ URL "http://www.ldap.cuni.cz/
              in.


              • After two-factor authentication login you can see the Mobile phone application as an a
                two-factor authentication.



              • You can also view Renewal codes again, if you click on the arrow on the bottom-right c

                Please note that each of the codes can be used only once.



            Aside from the mobile application, we highly recommend a secondary two-factor authenticati
            Currently you can choose between text message code [ URL "UVTEN-1.html#null"] and hardware
            "UVTEN-1.html#null"] .


            It is possible to use other mobile authentication applications compatible with two-factor 
            CAS user accounts. These are Google Authenticator or Microsoft Authenticator. Usage of the

            is based on specific workplace requirements. If you are interested in the use of these, pl
            with your local IT support.