|
| 1 | +.. _erda-signup-start: |
| 2 | +Sign up as an ERDA user |
| 3 | +======================= |
| 4 | + |
| 5 | +.. Note:: |
| 6 | + This page is designed to help you get started with using `ERDA <https://erda.ku.dk/>`_. For SIF, WIP. |
| 7 | + |
| 8 | +You can sign up to ERDA either as a UCPH employee/student (:ref:`erda-signup-ucph`) or as an external collaborataion partner (:ref:`erda-signup-external`), and you must sign up before you can access ERDA. |
| 9 | +In addition, to further protect your account, we recommend that you check our section on :ref:`erda-signup-twofactor`. |
| 10 | + |
| 11 | +.. _erda-signup-ucph: |
| 12 | +Sign up with a UCPH account |
| 13 | +=========================== |
| 14 | + |
| 15 | +Go to `ERDA <https://erda.ku.dk/>`_ and click "Sign up". |
| 16 | + |
| 17 | +In the pop-up window under "UCPH OpenID", enter: |
| 18 | + |
| 19 | +- Your UCPH username (consists of three letters and three digits) |
| 20 | + |
| 21 | +- Your personal UCPH password, which you also use, e.g. for KUnet |
| 22 | + |
| 23 | +- Then click "Yes (allow)". |
| 24 | + |
| 25 | +You are now registered as an ERDA user. |
| 26 | + |
| 27 | +.. _erda-signup-external: |
| 28 | +Sign up as an external collaboration partner |
| 29 | +============================================ |
| 30 | + |
| 31 | +Go to `ERDA <https://erda.ku.dk/>`_ and click on the *External Users* tab, before clicking "Sign up". |
| 32 | + |
| 33 | +You will be required to complete the form with your details: |
| 34 | + |
| 35 | +- Full name: *Enter your full name* |
| 36 | + |
| 37 | +- Email address: *Your work email (no third-party email services such as hotmail, gmail or yahoo)* |
| 38 | + |
| 39 | +- Organisation: *The name of your workplace/company* |
| 40 | + |
| 41 | +- Country: *Select your country in the drop-down menu* |
| 42 | + |
| 43 | +- Password: *Create a sufficiently difficult password for your access. It must consist of at least eight characters and must contain a combination of lowercase and uppercase letters, digits and special characters (at least three of the four types mentioned). In “Verify password”, you repeat the password* |
| 44 | + |
| 45 | +- Optional comment..: *Refer to your contact who is employed at the University of Copenhagen (name + email) and indicate any relevant project, course or collaboration.* |
| 46 | + |
| 47 | +- I accept..: *Read the “terms and conditions” and tick the box* |
| 48 | + |
| 49 | +Your request to sign up as an ERDA will now be sent to the SCIENCE HPC Center support team, who will obtain consent from the UCPH employee regarding the collaboration. |
| 50 | + |
| 51 | +When the SCIENCE HPC Center administrators have accepted your request, you will receive an email. |
| 52 | + |
| 53 | +To log in, click the link in the email and log onto the service with your email address and your service-specific password, before clicking "yes". |
| 54 | + |
| 55 | +.. _erda-signup-twofactor: |
| 56 | +Two-factor Authentication |
| 57 | +========================= |
| 58 | + |
| 59 | +.. note:: |
| 60 | + To increase security, we recommend that you use two-factor authentication for all ERDA access. |
| 61 | + |
| 62 | +With two-factor authentication, you can add an extra verification step to the login process which authenticates you. |
| 63 | +In addition to asking about something you know (in this case your username and password), an account protected by two-factor authentication will also request a token from an app you have either on your phone, tablet, or desktop. |
| 64 | + |
| 65 | +This guide contains all necessary knowledge for ERDA. |
| 66 | + |
| 67 | +Setup |
| 68 | +----- |
| 69 | + |
| 70 | +When setting up two-factor authentication, you must complete a one-time wizard. |
| 71 | + |
| 72 | +Click the green avatar in the bottom left corner. Click "Setup". |
| 73 | + |
| 74 | +.. image:: /images/authenticator/authenticator-wizard.png |
| 75 | + |
| 76 | +Click on the button "Okay, let's go!" |
| 77 | + |
| 78 | +.. image:: /images/authenticator/authenticator-go.png |
| 79 | + |
| 80 | +A wizard will now appear in ERDA which you must follow, either via its text in the wizard or by following along here. |
| 81 | + |
| 82 | +Download App |
| 83 | +------------ |
| 84 | + |
| 85 | +You need to install a TOTP Authenticator client on either a phone or tablet, like `Google Authenticator <https://en.wikipedia.org/wiki/Google_Authenticator>`_, `FreeOTP <https://freeotp.github.io/>`_, `Yubico Authenticator <https://www.yubico.com/products/yubico-authenticator/#h-download-yubico-authenticator>`_, `Bitwarden <https://bitwarden.com/download/>`_ or `NetIQ Advanced Authentication <https://www.microfocus.com/en-us/cyberres/identity-access-management/advanced-authentication>`_. Find any of these where you normally download apps, and click "I've got it installed!". |
| 86 | + |
| 87 | +.. note:: |
| 88 | + If you only have a private mobile phone/tablet and you do not want to use it and are an UCPH employee, you may request a small device that you can use instead. Contact [email protected] for further information. |
| 89 | + |
| 90 | +Import personal two-factor code |
| 91 | +------------------------------- |
| 92 | + |
| 93 | +Import your personal two-factor code with "Scan your Personal QR code" or type your personal key code. |
| 94 | + |
| 95 | +.. image:: /images/authenticator/authenticator-import.png |
| 96 | + |
| 97 | + |
| 98 | +**Example with Scan your personal QR code:** |
| 99 | + |
| 100 | +After clicking the button, a QR code pops up in either ERDA or SIF. |
| 101 | + |
| 102 | +Open your downloaded app and find the option to scan a QR code. The screenshot below is from the *Google Authenticator* app. |
| 103 | + |
| 104 | +.. image:: /images/authenticator/authenticator-scanqrcode.png |
| 105 | + |
| 106 | +Now scan the QR code you have just opened in the wizard. Point your device's camera at the QR code (The app may ask for permission to use your camera. Allow this). Now the app scans the QR code and you may click "Done importing" in the Wizard. |
| 107 | + |
| 108 | +Your application should now have a profile which generates a six-digit token, which changes every 30 seconds. |
| 109 | + |
| 110 | + |
| 111 | +Verify that it works |
| 112 | +-------------------- |
| 113 | + |
| 114 | +After downloading and importing your personal two-factor code, you can verify that it works properly by clicking the *Verify* button. A pop-up window automatically appears, and you must enter the token which shows up in your app. Please note that the token changes after 30 seconds, and will not work after that. Click the **Verify** button in the pop-up and it will confirm whether your two-factor is set up correct. |
| 115 | + |
| 116 | +.. image:: /images/authenticator/authenticator-verify.png |
| 117 | + |
| 118 | + |
| 119 | +Enable two-factor Authentication |
| 120 | +-------------------------------- |
| 121 | + |
| 122 | +Tap the slider button under *Enable 2-FA for KU/UCPH OpenID web login* to switch it from grey/off to green/on. |
| 123 | + |
| 124 | +.. image:: /images/authenticator/authenticator-toggle.png |
| 125 | + |
| 126 | +Additional two-factor authentication options for WebDAVS, SFTP and FTPS are now shown. These are protocols which you primarily need if you want to use ERDA as a network drive on your own computer. |
| 127 | + |
| 128 | +If you are not sure whether you are going to use ERDA as a network drive, we recommend that you activate all three slider buttons by switching them to green/on. |
| 129 | + |
| 130 | +Click *Save 2-Factor Auth Settings*. |
| 131 | + |
| 132 | +Your ERDA account is now protected with two-factor authentication. |
0 commit comments