Two-Factor Authentication (2FA)
Two-factor authentication (2FA) is an enhanced, multi-step authentication method. You may already use 2FA to access Nessie from home – or on external websites such as Gmail or your bank’s website.
How to set up two-factor authentication
Watch the following video for comprehensive instructions on setting up 2FA:
How to sign in using 2FA
The following video shows how to use Duo Push notifications, phone-call passcodes and text-message passcodes:
How to manage your 2FA devices
A password is no longer enough.
Attacks on accounts are increasingly sophisticated. 2FA helps to determine that you are who you say you are, and are not just someone with a stolen password.
What is the timeline for adopting 2FA?
Everyone can enroll beginning in April 2018.
Graduate students will be required to use 2FA starting October 2, 2018.
Staff and faculty will be required to use 2FA starting in November 2018.
Although not currently required, Undergraduates can enroll after September.
2FA is required for the following apps from anywhere:
2FA is required for the following apps only from non-University networks and VPN:
2FA will eventually be required for:
- NetID and Password Changes
- Applications accessing sensitive data
- Urbana campus Email
- Potentially new applications and services in the future
I cannot remember if I set up 2FA previously. How do I check?
We recommend starting the quick setup process from the beginning by going to verify.uillinois.edu and clicking Get Started. (Watch the 2FA Self Enrollment video above to see your next steps.)
If you have already registered your cell phone number, your second entry will override the first (rather than registering the number twice). You will also have the option of registering additional devices.
Other ways to authenticate with 2FA
Tablet Duo will send you a push notification to your tablet, allowing you to approve or deny the login request. The app can also generate passcodes without needing a network connection. Open the DUO Mobile app and select the key icon to the right of the University of Illinois to generate a passcode. Then enter that passcode on the 2FA screen. Cellular Phone A text or phone call with a code can be received with your cell phone (does not need to be a smartphone). Landline Phone A non-University phone number can be used to authenticate. Some university phone numbers are in shared spaces and are not considered secure. Lync phones are not considered a second factor and cannot be used for authentication purposes. Token If you do not wish to use your smartphone, tablet, cell phone or landline phone, you can request a token for authentication. See below for more information.
Graduate students may purchase tokens for themselves via the Web Store. There are two options available:
Since the token is associated with an account, tokens cannot be shared. They can be transferred.
Short URL for this page: http://go.illinois.edu/2fa-engr