What is two-factor authentication (MFA)?

• Two-factor authentication is a security measure that requires a second authentication step in addition to the password (e.g. confirmation in the application or the use of a USB token).

Why is Two-factor authentication important?

• It helps to protect your account even if a password is leaked or revealed.

What Two-factor authentication methods are available?

• Mobile application CU Key (recommended option)

• Hardware key

Do I need to use Two-factor authentication?

• Starting 31.10.2026, authentication will be forced by the second factor, which means that from that date you will no longer log into university systems without using the second authentication factor.

What app is recommended?

• We recommend using the university app CU Key, which has been developed for this purpose.

Can I use other authentication mobile apps for two-factor authentication?

• Yes, but the second factor authentication in TOTP (time-limited one-time password) third-party applications is done manually.

• After selecting the Mobile Application option, you must select "I want to enter the code manually", log in to the app and fill in the 6-digit TOTP code, which changes every 30 seconds.

• The use and support of these apps is determined by the individual workplaces. If you are interested in using them, please contact your faculty or unit's IT support.

Does the app use my personal data?

• No, the app only serves to authenticate your identity and does not have access to your personal data.

• Information on the processing of personal data can be viewed here.

What to do if I lose my phone?

• Contact your faculty or unit's IT support immediately so that the authentication method can be blocked and a new one set.

What hardware keys are available?

• We recommend using USB tokens (so-called keyrings) that are issued by your faculty/component's IT support. These tokens with FIDO2 support provide very strong protection against unauthorized access, as they require the user's physical presence at the login time.

Are there other hardware key variants available, besides the USB token?

• Yes, there are, for example, Windows Hello (using a fingerprint or FaceID on a computer). However, the use and support of these elements is determined by the individual workplaces themselves. If you are interested in using them, contact the IT support of your faculty or unit.

What if I lose or damage the USB token?

• Contact your faculty or component's IT support immediately so that the authentication method can be blocked and a new one set.

What if I can't login because of Two-Factor authentication?

• Check your Internet connection or the correct time on your device. Time synchronization is required when using TOTP applications (time-limited one-time password). If the problem persists, contact IT support.