IT Service Management Knowledge Base - What is two-step login with Duo?

What is Two-Step Login with Duo?

Two-Step Login with Duo is a new service that became available in 2016 for employees to provide additional security that enables university systems to verify user’s identities with more certainty. This is especially important for protected and sensitive systems.

Two-factor authentication adds a second layer of security to your online accounts. Verifying your identity using a second factor (like your phone or other mobile device) prevents anyone but you from logging in, even if they know your password.

1. 1. 1. 1. Enter username and password as usual
        Use your phone to verify your identity
        Securely logged in

Security Benefits

Adding a second layer of protection to your digital identity.
Further protects sensitive data you access, even in the event that a NetID/password has been compromised.
Helps mitigate phishing attacks by preventing access to sensitive information.
Meets new industry security regulations and compliance.
Conveniently functions on- and off-campus.
Enterprise License is centrally funded.

“Over 95% of attacks involve harvesting credentials from customer devices, then logging into web applications with them.” — Verizon 2015 Data Breach Investigations Report

Required for

All Active Rutgers University Employees (Faculty, Staff, Student Workers)
Active Guests (Visiting scholars, Contractors, etc.)
Active Students
Retirees

Enrollment

Follow the instructions on how to enroll in Two-Step Login with Duo. To fully protect your NetID account we strongly recommend that you also opt-in to using two-step login with Duo for all Rutgers University sign-in pages. If you are a part of a group that is required to use Two-Step login, you are automatically opted-in when you enroll. Enrollment is done through the NetID Management application at netid.rutgers.edu.

Note: It is best to enroll more than one device such as smartphone, tablet, etc. to avoid difficulties authenticating when your primary device is not available. Smartphone authentication methods via DUO Push and DUO Mobile passcodes are recommended, use of other 2nd-factor authentication methods is not as cost-effective.

Opt-In

If you are not already required to do so, it's highly recommended that you also opt-in by following the opt-in instructions after you complete your enrollment. Once you complete this process, your account is truly enrolled in NetID+.

How Does Two-Step Login with Duo Authentication Work?

After you enroll for Two-Step Login with Duo, when you access any University central authentication service (CAS) protected web application, you will complete the first authentication step by entering your Rutgers NetID and password in the CAS login page. You will then be prompted to complete the second step using any of the available DUO Security authentication methods you have setup.

International Traveler Information

Two-Step Login with Duo can be used while traveling abroad. All available authentication methods should work. When cellular service or internet access is not available, the Mobile push and phone call will not be available to your device. In this case, you can still use the Duo Mobile Passcodes or hardware token if you have one.