What is Two-Step Login with Duo?
Two-Step Login with Duo is a new service that became available in 2016 for employees to provide additional security that enables university systems to verify user’s identities with more certainty. This is especially important for protected and sensitive systems.
Two-factor authentication adds a second layer of security to your online accounts. Verifying your identity using a second factor (like your phone or other mobile device) prevents anyone but you from logging in, even if they know your password.
- Enter username and password as usual
- Use your phone to verify your identity
- Securely logged in
- Adding a second layer of protection to your digital identity.
- Further protects sensitive data you access, even in the event that a NetID/password has been compromised.
- Helps mitigate phishing attacks by preventing access to sensitive information.
- Meets new industry security regulations and compliance.
- Conveniently functions on- and off-campus.
- Enterprise License is centrally funded.
“Over 95% of attacks involve harvesting credentials from customer devices, then logging into web applications with them.” — Verizon 2015 Data Breach Investigations Report
- All Active Rutgers University Employees (Faculty, Staff, Student Workers).
- Active Guests (Visiting scholars, Contractors, etc.).
- Active Students.
For your security, you are strongly encouraged to enroll in Two-Step Login with Duo, which will be required to access certain essential service such as VPN. To fully protect your NetID account we strongly recommend that you also opt-in to using two-step login with Duo for all Rutgers University sign pages. You can do so by following the opt-in instructions after you complete your enrollment. Once you complete this process, your account is truly enrolled in NetID+. Enrollment is done through the NetID Management application at netid.rutgers.edu.
Note: It is best to enroll more than one device such as smartphone, tablet, etc. to avoid difficulties authenticating when your primary device is not available. Smartphone authentication methods via DUO Push and DUO Mobile passcodes are recommended, use of other 2nd-factor authentication methods is not as cost-effective.
How Does Two-Step Login with Duo Authentication Work?
After you enroll for Two-Step Login with Duo, when you access any University central authentication service (CAS) protected web application, you will complete the first authentication step by entering your Rutgers NetID and password in the CAS login page. You will then be prompted to complete the second step using any of the available DUO Security authentication methods:
International Traveler Information:
Two-Step Login with Duo can be used while traveling abroad. All available authentication methods should work. When cellular service or internet access is not available, the Mobile push will not be available to your device. In this case, you can still use the Duo Mobile Passcodes or hard token if you have one. You can request 10 one-time-use passcodes to be sent by text message before you travel and you can also request a Bypass code from the Help Desk.