...
Log in to your organization's Web portal as you would normally do so.
If multi-factor authentication is optional (or required and you have multiple options available to you) and you want to enable OATH Tokens as a second factor for your account, select OATH Token and click Submit.
If OATH Tokens are required for your account, you will not see a screen asking you to select a multi-factor option. Instead, you will see the second screen screenbelow.
You should see a screen stating that you need to verify your identity by entering the code generated by Google Authenticator.
To get your token, click Email Token and Instruction.
Click Ok to close the software token was issued successfully message and then check your email for further instructions.
Follow the instruction for installing Google Authenticator on your phone and then click the appropriate link to provision your token.
If you read the email from the your computer, clicking the from your PC link generates QR code in the browser. Scan the code with a barcode reader from your mobile phone.
Next, retrieve the token from Google Authenticator (or Duo if you are using that application), enter it in the Verification field and then click Verify.
If you entered the code correctly, and another level of multi-factor authentication is not required on your account, you should be authenticated. The next time you log in to the portal, follow the instructions on the screen.
...