University of Bamberg
open search form
You are here

Service Institutions

University IT-Service

  1.  University of bamberg
  2. Weblogin
  3. Administration and Institutions
  4. Service Institutions
  5. University IT-Service
  6. IT Services
  7. Login, Roles, Rights = IAM
  8. Passkey (English)
  9. Instructions for setting up Passkey
  10. MFA Passkey under macOS set up (english)

MFA Passkey set up under MacOS

Regulated rules:

  • If a computer is used by several people, it is mandatory that everyone logs in with their personal BA number. A local user account with which several people work may therefore not be used.
  • No MFA login may be set up with a technical account.

Please note!

  • Before you can set up the passkey, the end device must be prepared. Please follow these instructions:
  • If you want to set up Passkey on another end device, first log in to the IAM portal on the end device on which you have already rolled up Passkey. Generate the confirmation code. And follow the instructions in the section Create Passkesy on antoher macOS device on the new end device.

Create passkey on the first device

To roll out the passkey on your first computer, open the website https://getpasskey.iam.uni-bamberg.de/ with your BA-Number and the corresponding password.

After successfully registering, follow the instructions starting from the Roll out token.

View Getpasskey registration via Shibboleth
Figure 1: Getpasskey registration via Shibboleth

Roll out token

Select the menu item Enroll Token.

As you have to roll out a passkey for each device, it is advisable to define a description accordingly. Therefore, assign a corresponding name under Description, such as “Laptop login”. Confirm this with Enroll Token.

Screenshot 7: Describing the token name and enroll the token
Figure 2: Describing the token name and enroll the token on the website

If the passkey has been successfully stored, you will receive the message The token has been rolled out in the next window.

View Passkey successfully rolled out
Figure 3: Passkey successfully rolled out

Otherwise, select iCloud Keychain in the window that opens and confirm with Continue.

Screenshot 9: Create Passkey on site
Screenshot 4: Create Passkey on passkey site

Bitte achten Sie darauf, dass Sie, sollte dies erforderlich sein, bei der Passkey-Ersetzung Ihr eigenes Kennwort für die Ger?tesperre und nicht das Passwort Ihrer BA-Nummer angeben müssen. Best?tigen Sie danach mit Fortfahren.

View Allow passkey replacement with the device password
Figure 5: Allow passkey replacement with the device password

If you use several web browsers in parallel, they should all work with one passkey without any problems. However, additional authorisations may be requested when logging in. Screenshot 11 show an example of logging in with the Chrome web browser.

Screenshot 7: Chrome Web-login with iCloud Keychain
Figure 6: Chrome login under iCloud Keychain
View Automatic login with passkey
Figure 7: Automatic login with passkey

Note!

Once the passkey has been rolled out, you can tick the box for Always use automatic login with passkey when logging in to Shibboleth. This means you no longer need to enter your BA-Number and password before you can use the passkey.

Manage passkeys

Passkeys are managed via the IAM portal (iam.uni-bamberg.de). You can deactivate or delete your passkeys under the menu item Manage Passkeys. Please note that the corresponding passkey must be deleted immediately if the device is lost or stolen.

Screenshot 13: Manage passkeys
Figure 7: Manage passkeys in the IAM-Portal

Have you any futher questions?

IT-Support
Telephone: +49 951 863-1333
E-Mail: it-support(at)uni-bamberg.de