Adding 2FA Tokens to Your Account
Two-Factor Authentication for your High Performance Computing (HPC) account is currently available on a voluntary basis. You can opt in to this feature by adding a second factor in form of an authentication token to your RegApp account.
For more detailed instructions, continue below.
- Login to RegApp
- Navigate to Index → My Tokens
- If you have configured at least one token previously, authenticate yourself using that
- Click the Add button for your desired token type and follow the instructions on screen
You can add a new authentication token on a dedicated sub-page. To reach it, hover your mouse over the menu point Index in the navigation ribbon at the top. This will expand the menu. Click on My Tokens. If you do not yet have any authentication tokens configured, this will take you directly to the configuration site. If you have configured at least one further authentication token, you will be prompted to authenticate yourself using any of your configured tokens.
On the configuration site, you can see a list of all the tokens you have registered as possible second factors. Each token has a unique name and lists its type (currently Paper TAN list, Smartphone App, or Yubikey), the status (active or disabled), and gives the option to disable active tokens, while deactivated tokens can be either enabled again or removed from your account.
Creating a Smartphone Token
The button NEW SMARTPHONE TOKEN opens the dialogue to add a new smartphone token to your account. You can use your authenticator app of choice, such as FreeOTP, Sophos Authenticator, or similar apps.
Creating the token may take a few seconds. If nothing happens after ten seconds or more, you may need to reload the page (this is likely to happen if you didn't interact with it for several minutes).
After creation, you will be presented with a QR code. You will need to scan this with your authenticator app of choice. You can also enter the seed manually. Note that this is not a base32 seed and is thus not accepted by all authenticator apps. The Serial string is the unique name of your token by which RegApp recognises it. This is not the seed to initialize the token.
You will need to confirm the token by typing in the current code displayed on your authenticator app after scanning the QR code. This confirms the token and concludes the setup. You can now use this token the next time you need to enter a second factor for authentication.
Creating a Yubikey Token
Creating a New Tan List
The TAN list is intended as a backup option only. Please create an additional token to use in your everyday work.
To generate a list of TANs, click the button NEW TAN LIST and follow the instructions shown on screen. Make sure to save the list in a manner that makes it inaccessible for third parties