ITS Introduces 2-Step Login with Duo

ALBANY, N.Y. (June 3, 2020) -- ITS is taking increased security measures to protect university accounts. Starting this summer, the use of 2-Step Login with Duo Multi-Factor Authentication (MFA) will be phased in for all faculty and staff across the campus.

2-Step Login, or MFA, is the new security standard for protecting accounts that may contain sensitive or confidential information. The use of personal credentials (such as a NetID and password) are no longer enough to assure the individual attempting to access an account is authorized to do so. 2-Step Login provides another layer of security by requiring the end user to further verify their identity using a one-time code. This additional protection is essential as the campus responds to COVID-19. Working off-site poses other security challenges, so it is important to assure access is only available to authorized users.

ITS first introduced this practice in 2018 when all students were enrolled in 2-Step Login with Microsoft for email and other Office 365 applications. In 2019, 2-Step Login with Duo was introduced to approximately 1,000 faculty and staff with access to the IAS PeopleSoft system. Since initiating these security measures, the University has seen a significant reduction in compromised accounts. The use of 2-Step Login has spared thousands of people across the campus community from having their accounts compromised.

Coming this summer, ITS will phase in the use of 2-Step login across departments until all faculty and staff are protected. Departments will be contacted by ITS well in advance of their scheduled implementation. Additionally, 2-Step Login will protect an increasing number of campus IT services.
Please check the 2-Step Login website for more information and expect to hear from ITS shortly about how this will impact you. Please contact the ITS Service Desk with any questions or concerns.

ITS, or Information Technology Services, is the centralized provider of campus technology at UAlbany. ITS is responsible for information security across the University’s three campuses, which includes a wide range of technical, administrative, and physical controls designed to prevent and detect loss, damage or exposure of campus information assets while preserving the confidentiality, availability and integrity of these critical resources.