Two-factor authentication is a way of logging into your account that requires more than just your username and password combination. The main drawback of the username/password is that this combination is only a single piece of information that a malicious individual needs to obtain in order to compromise your account(s).
UMBC has partnered with Duo Security for two-factor authentication. UMBC implements this by adding an extra layer of security to your login procedure by requiring you to have in your possession something physical unique to you, such as a smartphone, your office phone, or even a tablet.
For more information on two-factor authentication as provided by Duo Security, go to http://guide.duosecurity.com
Who is eligible to use Duo and what services are supported?
Duo is currently available to UMBC faculty and staff. Duo has apps for iOS, Android, and Duo mobile also works with Blackberry, Palm, Windows 7, Windows Mobile, and J2ME/Symbian. Duo is checked whenever you authenticate using WebAuth or myUMBC. This also applies to systems such as PeopleSoft and services such as Box Microsoft Office, VPN and Google Apps (Drive). For those who are identified with having access to sensitive data, they are administratively enrolled into Duo.
Getting started depends on whether you are enrolled into Duo automatically or opt in. For those enrolled automatically, refer to "I've been enrolled in Duo, how do I register my device?" as your next step involves logging into WebAuth or myUMBC. If you want to opt into Duo, refer to How do I activate Duo for my UMBC account? to get started in self enrolling into Duo through your UMBC account page.
Other helpful links
- I replaced or reset my mobile device. What do I do now?
- What is purpose for the "Remember me for 30 days" option in Duo?
- I do not want to be in Duo anymore, how do I leave?
What is multi-factor authentication?
Multi-factor authentication adds a second layer of security to your online accounts. Verifying your identity using an additional factor (like your phone or other mobile device) prevents anyone but you from logging in, even if they know your password.
This additional factor of authentication is separate and independent from your username and password — Duo never sees your password.
How It Works
Enter username and password as usual
Use your phone to verify your identity
Securely log in
Why do I need this?
Passwords are surprisingly easy to compromise. They can often be stolen, guessed, or hacked — you might not even know someone is accessing your account. Multi-factor authentication helps keep your account secure even if your password is compromised. With Duo Push, you'll be alerted right away (on your phone) if someone is trying to log in as you.
News
| Iframe | ||||||||
|---|---|---|---|---|---|---|---|---|
|
Browse All Articles
| Page Tree | ||
|---|---|---|
|
| Note |
|---|
DoIT strongly encourages Duo users to enroll a backup authentication device to avoid being locked out of your account should you be without your default device! |
| Info |
|---|
Recommended Articles |
For more information on multi-factor authentication as provided by Duo Security, go to http://guide.duosecurity.com