On July 2, 2024, multi-factor authentication (MFA) for the RWTH Single Sign-On (SSO) will be made mandatory throughout the university. Your RWTH Single Sign-On account gives you access to Shibboleth-protected applications such as RWTHonline, IdM Selfservice, SAP Fiori, GigaMove and many more. With the introduction of MFA, access to these services will be protected with an additional security code that you can generate using the token types you have chosen yourself. From this point onwards, you will no longer be able to log in to SSO-protected applications without a suitable, self-set second factor.
Various token types are currently available for SSO. Both private and business end devices are permitted for the generation of time-limited one-time passwords (e.g. via authenticator apps). Authenticator apps for the desktop can therefore also be installed on work PCs. The use of private devices is entirely voluntary and cannot be expected.
Test Page for Practice Purposes
It is not technically possible to implement a transition phase in which you can use the SSO both with and without MFA. As an alternative, however, an MFA test page has been available to you since May 2, 2024, which you can use to check whether you can successfully log in with your tokens via the SSO until the mandatory introduction. You can access the MFA test page via the following link:
https://idm.rwth-aachen.de/mfatest
Instructions and Assistance
In our documentation portal IT Center Help you will find explanations on MFA, setting up tokens and RWTH Single Sign-On with MFA. General information on MFA mechanisms can be found on the IT Center blog.
You can also watch instructional videos on MFA in general and how to set it up on YouTube.