https://wiki.infn.it/ 2026-05-11T08:18:14+00:00 https://wiki.infn.it/ https://wiki.infn.it/_media/wiki/logo.png text/html 2025-03-13T13:45:21+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.infn.it/cn/ccr/aai/doc/2fa-en/app?rev=1741873521&do=diff Supported Applications Of the supported applications compatible with the infrastructure: * privacyIDEA Authenticator: mobile application for Android and Apple devices. Probably the simplest solution. * Ente Auth: available for both mobile and desktop. It is also recommended by CERN. text/html 2025-10-23T16:01:38+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.infn.it/cn/ccr/aai/doc/2fa-en/new-smartphone?rev=1761235298&do=diff New smartphone? With old one still working You can access the dedicated web service <https://mfa.app.infn.it/> using your old smartphone to generate the OTP before you dispose of it completely, and obtain a new token to be registered in the new device If you cannot access to your old device text/html 2025-04-07T13:18:22+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.infn.it/cn/ccr/aai/doc/2fa-en/ppr?rev=1744031902&do=diff Paper OTP Codes Istruzioni in italiano: Codici OTP cartacei As a backup method to the smartphone application, it is possible to print a page with disposable codes. These codes must be used one after the other, in the exact order indicated. It is therefore recommended to check or cross out the codes on the sheet when used. text/html 2025-06-17T07:57:45+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.infn.it/cn/ccr/aai/doc/2fa-en/rapid?rev=1750147065&do=diff 5-Minute Activation of the Second Factor for INFN-AAI Istruzioni in italiano: Attivazione in 5-minuti del secondo fattore per INFN-AAI The second factor consists of a One Time Password (OTP), a short-lived disposable password, generated each time via an application on your smartphone. As a backup method, it is possible to print text/html 2025-03-21T08:09:01+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.infn.it/cn/ccr/aai/doc/2fa-en/req?rev=1742544541&do=diff Instructions for Activating Two-Factor Authentication WARNING: Once two-factor authentication is activated, every login via the INFN-AAI IdP will require two factors. You can choose the first in the usual way (username/password, X.509, Kerberos-GSSAPI, SPiD, CIE), and the second will always be the TOTP (Time-based One-Time Password) code generated by the app you chose and stored the token in during the two-factor activation process.