Secure login (Two-factor authentication)

NMBU implements Secure Login (Two-factor authentication) for portal.nmbu.no.This means that you get one-time code (OTP) via SMS or app when you log on to the Portal. The exception is NMBU controlled PCs on campus networks. These PCs will not be required for one-time log-on. Read more about the portal.

You can choose between using one-time code via SMS or app

Secure logon with SMS:

Have you given consent?

If you have not already consented to us using your mobile number in conjunction with two factor authentications, please log in to brukerdata.nmbu.no. Under the tab “Secure Login” you will see which mobile number NMBU has stored on you and can choose which to use. If you do not consent, you will not be able to log in to portal.nmbu.no outside the NMBU network

When private and / or job mobile numbers are not in NMBU’s systems.

The number must be entered in UBW / Agresso or FS before you can use it to receive one-time code on SMS. It will take some time from entering the mobile number in UBW / Agresso or FS before it becomes available on brukerdata.nmbu.no.

Student Guide (FS)
Guide for employees (UBW / Agresso)

Secure login with app:

Log in to brukerdata.nmbu.no from a PC, under the tab “Safe login” you will see a QR code. Download the “Microsoft Authenticator” app from the App Store or Play Store to your mobile phone. Start the app and select “add account”, scan the QR code and the app will then add an account that generates one-time code to use for secure login.

What is Two-factor authentication (2FA)?

Two-factor authentication is a safer way to log in where the user must confirm their identity twice, usually first with user name and password and then using a device such as cell phone or code chip. For NMBU’s part, the authentication will take place by user name and password, then one-time code on SMS. Read more about 2FA.

Why?

Many have experienced attempts to fraud them in to give up the user name and password. When the user name and password are astray, criminals (hackers) can access NMBU systems and manipulate, delete, or copy out data. They may use the access to attack or abuse NMBU’s IT systems or to take over and send out fake emails from NMBU users.

Having unauthorized control over your email, they can reset the passwords on any other services you use, and effectively block you from all your digital life.

Is it completely secure when using Two-factor authentication?

No, it’s not 100% secure. For example, some may make fake webpages that also allow us to enter the one-time password at the same time as the password. We must therefore always be on guard. The advantage of Two-factor authentication is that fraudsters can only act like us on one service and only once per scam (the codes are usually unique and only valid once)

So even though it is not completely secure, it is so much safer that everyone should activate it.

Read more about secure login here: (external websites).

Password advice from National Cyber Security Centre: https://www.ncsc.gov.uk/guidance/multi-factor-authentication-online-services

Guides to enable Two-factor authentication privately from Nettvett.no no https://nettvett.no/2-trinns-bekreftelse/