Skip to ContentSkip to Navigation
Society/business Center for Information Technology Security

Multi-factor Authentication

Log in with something you know and with something you have

The UG continuously works to improve IT security. Following the ransomware attack in Maastricht in part, various measures are being taken in front of and behind the scenes to secure the university network even better. One of the security projects is the introduction of Multi-factor Authentication (MFA).

What is MFA?

MFA adds an extra layer of security to the login procedure. This log-in method is also used by the government (DigiD) and banks for secure online banking. After typing in the staff or student number and the password (something you know), a second authentication step follows via a separate device, e.g. a mobile phone or tablet (something you have). This two-step verification method makes it harder for malicious parties to gain access to your account because both the combination of the login name and password ánd the second authentication factor via a separate device is required.

How to set up MFA

The registration process via the MFA portal ( is step-by-step and self-explanatory. If you need help, please contact the CIT Service Desk.

  • MFA requires a camera-enabled mobile phone or tablet on which you install the Google Authenticator app or another TOTP app (e.g. independent app Authy of Microsoft Authenticator). You can download the app from the App Store (Apple) or Google Play Store (Android).
  • A pc to access the MFA portal
  • Your UG account (P or S-number) to log into the MFA portal. If you have not yet activated your account, please do so via
  • Access to your private email address registered at the UG. You will receive your MFA verification code here.

Frequently asked questions about MFA

How do I use MFA

You set up MFA yourself via the MFA portal ( The portal guides you step-by-step through what needs to be done.

What do I need to set up MFA

You need:

  • a device on which you open the MFA portal
  • a smartphone or tablet that you will use to generate your MFA code in the future. When registering, your smartphone or tablet needs a working camera
  • a privat email address *

* The private email address will only be used to send you a confirmation code for MFA or to reset your password if you have forgotten it. This code is intentionally sent to a non-RUG email address for security reasons. The address will not be used for other RUG communication.

My phone is broken. How can I log in again?

If your phone is broken, you can temporarily install the Google Authenticator app or other TOTP app you use for MFA on another device, for example your tablet. You also register that device via the MFA portal Your existing registration on your phone will then be overwritten. Once your phone is repaired, you can register it in the same way.

If you do not have an alternative device available, please contact the CIT Service Desk to borrow a temporary replacement phone.

What should I do if I have a new mobile phone?

You can register your new phone via the MFA portal. Your old MFA registration will then be replaced automatically.

Last modified:18 September 2023 5.21 p.m.
View this page in: Nederlands