Two factor authentication

An OTP secures the login to your account with a one-time password, generated with limited time validity by third-party applications on your mobile phone (such as the Google Authenticator Application).

Each time you sign in, you fill in a code number from your mobile phone.

You may connect only one device to your account.

The mobile app we've created (for Android and iOS) for securing mojeID account sign-in.

After downloading the Authenticator application to your mobile phone, you pair the phone with your account. When logging in, you check the code displayed in the application on your phone to make sure it matches the code on your computer screen, then click the button to sign in to your account. You do not need to type the code.

You may connect only one device to your account.

A security token with support for the FIDO 2 protocol is a small device (with a USB connector) that can be associated with your mojeID account. Then, besides filling in your password, you have to confirm login to your account also by pressing a button on the token.

You can connect multiple tokens to your account. To confirm adding a new token, please use one of the FIDO 2 tokens you already use to log in. When connecting a new token, you must select its name.

You can view token details in your account. Tokens can be individually removed from your account.

FIDO 2 tokens can be purchased from online stores. The product specification must include the FIDO 2 label. These tokens are compatible with the older U2F standard.
You may also find the generic designation FIDO2 U2F in token specification.
You can use terms such as  "fido 2 usb" or "fido 2 nfc" to search the internet.

You can connect multiple tokens to your account.

It is an authentication hardware token for multi-factor authentication that provides secure login via a computer, mobile device or laptop. It requires physical presence of the token and manual user interaction to log in (pressing a button, entering a PIN code or touching a fingerprint reader).

The security token works without the need to install any software or drivers — the device acts like a USB keyboard. The user only needs a compatible version of a browser that supports FIDO 2 devices. The latest versions of Chrome, Firefox, Edge and Safari work well.

A security PIN can be entered for tokens via the operating system or the manufacturer's application, which further increases security. YubiKey tokens can be managed in the YubiKey Manager application. This application also allows you to reset the token and clear the entered PIN. Please note that the reset will disable your MojeID account login, so you will need to remove the token from your account and set it up again.

Using a security token can eliminate threats, such as Man-in-the-Middle Attack and Phishing.

The security token does not serve as a memory drive, but only for login. It should be plugged directly into a computer, not into a docking station. You can connect multiple tokens to your account.

If you have any questions or comments concerning mojeID, contact us at podpora@mojeid.cz or call the technical support of the CZ.NIC Association, the administrator of the domain register, at +420 222 745 111 (24/7).