2Factor Authentication (2FA) is a service that allows the University of Chicago employees to enhance the security of their CNetID by using their phone, tablet, or other device to verify their identities when they attempt to access University of Chicago applications. 2FA prevents anyone but the CNet account holder from using their account to log in to websites that are protected with Shibboleth authentication or those web-based services where the service owners have chosen for all authentication to use 2FA, even if they know your CNetID password.
This second factor of authentication is separate and independent from the CNetID and password step — 2FA never uses or even sees your password.
There is no charge to the user for the basic service. Hardware tokens are available for a nominal fee from the ID & Privileges Office at the Regenstein Library (departments may choose to purchase them).
University Staff and Faculty are encouraged to use 2FA. Beginning June 25, 2014, CNetID account holders can visit the welcome page at 2FA.uchicago.edu to enroll in 2FA. Users who opt to use the mobile application will be prompted to download Duo Security’s mobile app.