University employees in campus, hospital, and health sciences organizations are required to use two-factor authentication (2FA) when logging in to use certain online U applications and IT systems.
Two-factor authentication provides an extra layer of security by requiring a user to log in with a username/password combo plus a second method of verifying the user's identity. The second method is something the user has physical access to, like a cell phone or tablet. This ensures that even if a hacker manages to obtain a user's login credentials, the information is useless without access to the user's secondary device.
Offshore vendors, e-prescribers for controlled substances, and those already using RSA are currently required to use RSA SecurID for 2FA. Please note: effective February 28, 2018, these users must switch to Duo Security. Visit this page for more information about switching from RSA to Duo. All other current employees are required to use Duo Security.