Two-Factor Authentication FAQs

Below are a few of the frequently asked questions about Two-Factor Authentication which is being used by the University to provide additional online security.

Question Answer
What is Two-Factor Authentication? Two-Factor Authentication (2FA) is a security process in which the user provides two means of identification from separate categories of credentials; one is typically a physical token (in our context, it’s a code generated by Google Authenticator), and the other is something memorised, such as a password. 2FA is used by many organisations and over 75% of the top 25 universities worldwide to add an additional layer of security to sensitive IT applications and VPN access. The intention is to provde stronger protection against unauthorised access to user accounts.
Will I need to use Two-Factor Authentication Access to some of the University’s services currently require Two-Factor Authentication to log into, and it is likely others will follow as the need for increased security arises. Any new services that need 2FA will be communicated to those users who will be affected by any change.
What is Google Authenticator (GA)? Google Authenticator is an application that generates short numeric one-time passwords (often referred to as OTP), which users must provide in addition to their username and password to log into restricted applications.
What do I need to do if I have to use Two-Factor Authentication? If you use a service that is protected by 2FA you will need to download Google Authenticator to your smartphone if you do not already have this installed. Once you have done this you will register your Google Authenticator with the University of Auckland by clicking on the following link: https://mytoken.auckland.ac.nz/register.
Where do I get GA from? Google Authenticator can be downloaded for free from Google Play, Apple iTunes, and the Windows Store.
What if my Smartphone is lost/stolen?
  1. Login to mytoken.auckland.ac.nz/manage and block the lost/stolen token so that it’s no longer active for use.
  2. Contact the Staff Service Centre to deactivate your old tokens.
  3. Then install Google Authenticator on your new smartphone.
Can I use Two-Factor Authentication with a mobile device or via a VPN from home? If you have downloaded Google Authenticator you will be able to use 2FA regardless of where you are working from.
Can someone else use my code from Google Authenticator to access my information or 2FA protected applications No, a person can only authenticate to applications protected by 2FA if they know your login credentials, and have physical access to your smartphone.
Where can I get more information about Two-Factor Authentication and Google Authenticator?

For more information please refer to the following:

 

Need help?

If you still have questions or need further help please contact us using one of the methods below.

Students, Applicants and Alumni:

Staff

For more contact details, visit Contact us.