Skip to ContentSkip to Navigation
Society/business Center for Information Technology Security

Multi-factor Authentication

Log in with something you know and with something you have

The UG continuously works to improve IT security. Following the ransomware attack in Maastricht in part, various measures are being taken in front of and behind the scenes to secure the university network even better. One of the security projects is the introduction of Multi-factor Authentication (MFA).

What is MFA?

MFA adds an extra layer of security to the login procedure. This log-in method is also used by the government (DigiD) and banks for secure online banking. After typing in the staff or student number and the password (something you know), a second authentication step follows via a separate device, e.g. a mobile phone or tablet (something you have). This two-step verification method makes it harder for malicious parties to gain access to your account because both the combination of the login name and password ánd the second authentication factor via a separate device is required.

What is the impact?

All employees and students will at some point have to deal with MFA as soon as they log on to the university network. In many cases, this will be once a day when logging in for the first time in the morning. However, this depends on various factors, such as the inactive time, or the fact that one logs in from a university building or home. Users of programmes such as Progress and Corsa and all CIT staff already work with MFA.

What do you need for MFA?

MFA requires a mobile phone or tablet on which an app  (Google Authenticator or another TOTP-app, e.g. the independent Authy app of Microsoft Authenticator) is installed that generates the second login code. In the app-store it is mentioned how each app deals with personal data.

What is the schedule?

The roll-out of MFA across the university will start in May. This will take place in phases. Each week, employees of a department or faculty will be guided through the process of setting up Multi-factor Authentication. A support team will be present on-site during that week. However, it is not necessary to come to the university to register. It is very easy to register your mobile phone via the portal. In July students are asked to set up MFA.

Is MFA the only security measure being taken?

The introduction of MFA is one of the many security measures that will be implemented. It is part of the security master plan. Many of the measures in this plan are not visible to the general public. MFA certainly is. The compulsory change of password is also a measure that all UG staff and students will be faced with.

How to register?

The registration process via the MFA portal ( is step-by-step and self-explanatory. If you need help, please contact the CIT Service Desk.

  • MFA requires a camera-enabled mobile phone or tablet on which you install the Google Authenticator app or another TOTP app (e.g. independent app Authy of Microsoft Authenticator). You can download the app from the App Store (Apple) or Google Play Store (Android).
  • A pc to access the MFA portal
  • Your UG account (P or S-number) to log into the MFA portal. If you have not yet activated your account, please do so via
  • Access to your private email address registered at the UG. You will receive your MFA verification code here.
Last modified:05 July 2021 3.14 p.m.
printView this page in: Nederlands