You are here:

Two-Factor Authentication (2FA)

New employees should visit the Duo management portal to register a device:

Duo management portal

Note: If you have already enrolled with Duo and are still being redirected to this page, you may need to completely exit out of your web browser and/or clear your web browser's cache and cookies. If you continue to experience issues, please contact your help desk for assistance.


University employees in campus, hospital, and health sciences organizations are required to use two-factor authentication (2FA) when logging in to use certain online U applications and IT systems.

Two-factor authentication provides an extra layer of security by requiring a user to log in with a username/password combo plus a second method of verifying the user's identity. The second method is something the user has physical access to, like a cell phone or tablet. This ensures that even if a hacker manages to obtain a user's login credentials, the information is useless without access to the user's secondary device.

All University and U Health employees are required to use Duo 2FA for the university's single-sign-on (SSO) system (e.g. how employees access Box, CIS, and Kronos), VPN, Citrix, and ePrescribe. Offshore vendors and clinical administrators are currently required to use RSA SecurID for accessing certain systems. Visit this page for more information about switching from RSA to Duo.

Learn more

2FA overview

Adding or changing a device

How to change the order of default devices

2FA tokens

Using the AnyConnect VPN client with 2FA

Connecting using VPN (AnyConnect) with an iOS device


View the Duo how-to video in Pulse (UHealth) or Bridge (campus)

Need help?

UIT Help Desk for Main Campus

801-581-4000, option 1

Knowledge Base

U Health ITS Service Desk


Knowledge Base

Last Updated: 10/19/18