Logging in with 2FA

When two-factor authentication (2FA) is required for login, faculty, staff, and student employees will receive a prompt from Duo after they enter their NetID credentials. You will authenticate the request with a push, call, or code on the device you added to the 2FA service

The simplest way to use 2FA at UConn while traveling is to download and set up the Duo Mobile app for authentication. Duo Mobile works both with and without internet access on your second device and is ITS’s recommended second factor authentication method for all situations.

Authentication Methods

To authenticate using a push notification (smartphone app), you need to have an internet or data connection. 

  1. On the 2FA screen, click Send Me a Push.

  2. A blue bar at the bottom of the screen tells you that a push notification was sent to your device.

  3. Tap the “Login request” message that displays on your smartphone or tablet or open the Duo Mobile app on your device and tap the message.

  4. Enter the 3-digit number displayed on the device you are logging into. If you get a request you were not expecting, tap I’m not logging in.

No internet or data connection is required when using the Duo app to authenticate a passcode. Hardware tokens are small devices that generate passcodes to verify your identity in place of a phone.

  1. At the Duo Prompt, click the link for Other Options.

  2. On the “Other options to log in” screen, select Duo Mobile Passcode.

  3. There are two ways to generate one-time passcodes with 2FA: 

    1. Duo Mobile: Open the Duo Mobile app and expand your University of Connecticut account. You may need to select Show to see the passcode.


      b. Hardware Token: If you have purchased a hardware token, push the button on the front of the device to generate a code.

  4. On the 2FA authentication screen, click Enter a Passcode. After doing so, a new text field will appear and the Enter a Passcode button will change to Log In.

  5. Enter the 6 digit code that appears, and click Log In. 

  1. On the 2FA screen, click Call Me. Your phone will be automatically called if you chose that default authentication method in your settings.

  2. A blue bar at the bottom of the screen will indicate the phone number being dialed.

  3. Answer the phone.

  4. Click the pound key (#) to authenticate.

  5. If you were not trying to access a system that requires 2FA, press the asterisk key (*) to report fraud. 

  1. On the 2FA authentication screen, click Enter a Passcode.

  2. A new text field appears, the Enter a Passcode button turns into Log In, and a blue bar will appear at the bottom with the button Text me new codes.

  3. Click Text me new codes.

  4. You will receive a text on the mobile phone you have registered with Duo.

  5. Type the 6 digit code in the text you receive into the website you are logging into, and click Log In.

Once a code has been generated, it will only work once.

Sometimes a phone's or carrier's security settings change, preventing or hampering receipt of the push notification. If you are no longer receiving push notifications, you can find troubleshooting documents for Android and iOS on Duo's website.

If you need to authenticate and you are not receiving push notifications, you can use one of the alternative methods below.

Trust Browser

2FA at UConn allows users to remember their device(s) for 30-day intervals, which decreases the number of times you must use your second factor to log in. Once you enable this feature, you will not receive 2FA prompts for 30 days as long as you are using the same web browser on the same device. This improves end-user convenience while still providing the security benefits of 2FA. To turn on this feature:

Once you complete the 2FA login, you will receive the below prompt. Select Yes, this is my device if this is your device. If this is a public, or shared, device, select “No, other people use this device”.

 

Related Articles