University of Bamberg
open search form
You are here

Service Institutions

University IT-Service

  1.  University of bamberg
  2. Weblogin
  3. Administration and Institutions
  4. Service Institutions
  5. University IT-Service
  6. IT Services
  7. Login, Roles, Rights = IAM
  8. Passkey (English)
  9. Instructions for setting up Passkey on another device
  10. MFA Passkey additional device Linux

MFA and passkey on Linux on another device

Attention:

  • If a computer is used by several people, it is essential that each user has their own local user account.
  • MFA login cannot be set up with a technical account.

Notes!

Before you can set up the passkey, the end device must be prepared. Please follow these instructions:

Preparing Linux

Create passkey on another device

  1. Log in to the IAM-Portal via the device on which you have already rolled out Passkey.
  2. First, create the Codematrix.
  3. You can then generate a confirmation code.

Then follow the link to roll out the passkey on the new device: https://getpasskey.iam.uni-bamberg.de.

The code matrix and confirmation code should be displayed for selection as a registration option.

Please enter the confirmation code you copied earlier into the field provided on the Getpasskey page and click Verify.

[Translate to English:] Ansicht Anmelden bei Passkeys Uni-Bamberg mit Bestätigungscode
[Translate to English:] Abbildung 1: Anmelden bei Passkeys Uni-Bamberg mit Bestätigungscode

Roll out token

Note!

Rolling out the token fails if you are using the Chrome browser and are logged into your Google account in the browser. In this case, you must use a different browser, such as Firefox.

Select the Roll out token menu item there.

Since you have to roll out a passkey for each device, it is advisable to define a description accordingly.

Therefore, assign an appropriate name under Description, such as “Linux login.” Confirm this by clicking Roll out token.

The temporary pop-up message “getpasskey.iam.uni-bamberg.de requests additional information...” will then be displayed. Please select the “Allow” option promptly. Otherwise, the token will be deactivated and deleted.

View Roll out tokens and confirm the notification
Figure 2: Roll out tokens and confirm the notification

Please ensure that you first use your BA number and corresponding password when logging in to the Firefox web browser.

View Login via Shibboleth with BA number
Figure 3: Login via Shibboleth with BA number
View Confirm authentication in KeePassXC Desktop
Figure 4: Confirm authentication in KeePassXC Desktop

Then confirm the process in KeepassXC by clicking the Authenticate button.

If the passkey has been successfully stored, you will see the message “The token has been rolled out” in the next window.

View Passkey successfully rolled out
Figure 5: Passkey successfully rolled out
View Automatic login with passkey
Figure 6: Automatic login with passkey

Note!

Once the passkey has been rolled out, you can tick the box for Always use automatic login with passkey when logging in to Shibboleth. This means you no longer need to enter your BA-Number and password before you can use the passkey.

Manage passkey

Passkeys are managed via the IAM-Portal (iam.uni-bamberg.de). You can deactivate or delete your passkeys under the menu item Manage passkeys. Please note that the corresponding passkey must be deleted immediately if the device is lost or stolen.

View Managing passkeys in the IAM portal
Figure 8: Managing passkeys in the IAM portal

Do you have any questions?

IT-Support
Telephone: +49 951 863-1333
E-Mail: it-support(at)uni-bamberg.de