The Lichtenberg HPC will follow suit with the mandatory two-factor authentication: we plan to activate it on the 8^th Dec 2025.

From then on, a cluster login based on your user / TU-ID password will require a second factor.

Logins based on ssh key are not affected.

^{By uploading your ssh “public keys” into the IDM portal, you save yourself editing your $HOME/.ssh/authorized_keys file on the cluster, or fiddling with the "ssh-copy-id command.}

Token

In the first phase, we will offer only TOTP via privacyIDEA. The token needs to be registered with the IDM portal beforehand.