Create an App password for Nexus365

There are two types of Multi-factor authentication (MFA); ‘Standard MFA’ which is the default at Oxford and suitable for most accounts, and ‘App Password MFA’ which is available on request.

What is an App password?

An App password is a long, randomly generated password that you provide only once instead of your regular password when signing in to an app or device that doesn't support MFA. You therefore only need to request ‘App Password MFA’ if you will be using an app or device that does not support MFA. If you have MFA enabled and an app isn't prompting you to enter a security code when you sign in, you may be able to sign in with an App password instead.

You can check whether you have ‘Standard MFA’ or ‘App Password MFA’ via the My Sign-ins page If you do not see the App Password option in your list of methods on, you have Standard MFA. 

How to request an App password

If you require the App Password MFA on a personal or generic/secondary account, please complete the service request to Switch Current Type – Multi-Factor Authentication (MFA).

Instructions on how to create an App password

Each app password should be unique to an application or device for greater security. Please ensure when creating app passwords you follow University guidelines for creating strong passwords and don’t reuse passwords across multiple applications.

Video guide: Setting up an App password

Setting up an App password

Here are the instructions on how to create an App password for Nexus365.

  1. Following the successful set-up of a multi-factor authentication method go to My Sign-ins
  2. Click +Add Method
  3. In the drop-down menu, select App Password

    Note: Some users report not being able to see App password in their list of methods. To fix this, add a different second method, delete it and then add it again. When you click Add Method again, App password will be in the list

  4. Click Add
  5. Enter a name that helps differentiate this App Password from any others you might have
  6. Click Next
  7. The App Password will be created
  8. Copy the password and keep it in a safe place
  9. Click Done
  10. App Password will appear in the list as a registered method

    The app password should now be entered for the relevant application or device instead of your Single Sign-On password

A video is also available to demonstrate how to set up an app password.

Things to know about App passwords

•    You should create a separate App password for each device that requires one.
•    The same App password can be used for multiple applications on the same device.
•    Once an App password is created, there is no way to go back and get the value.  You must create a new App password and delete the old one.
•    If an account becomes compromised, it is a standard operating procedure to clear all App passwords.
•    Never install an App password on a device you do not have complete control over.


If exposed, App passwords are dangerous as they bypass the account password and MFA. Keep them in a safe place until you have them safely configured on the device.


Get support

Local IT support provide your first line of on-the-spot help



Common requests and fault reports can be logged using self-service




The central Service Desk is available 24x7 on +44 1865 6 12345


If you do not have an SSO account you can use this form to contact the Service Desk