2Factor Authentication


2Factor Authentication (2FA) is a service that allows the University of Chicago employees to enhance the security of their CNetID by using their phone, tablet, or other device to verify their identities when they attempt to access University of Chicago applications. 2FA prevents anyone but the CNet account holder from using their account to log in to websites that are protected with Shibboleth authentication or those web-based services where the service owners have chosen for all authentication to use 2FA, even if they know your CNetID password.

This second factor of authentication is separate and independent from the CNetID and password step — 2FA never uses or even sees your password.

More information available on the Knowledge Base: Overview, FAQ, and Frequently-Visited Shibbolized sites.

Other Audience: 
Associates and Temporary Account Holders
Service Charges: 

There is no charge to the user for the basic service. Hardware tokens are available for a nominal fee from the ID & Privileges Office at the Regenstein Library (departments may choose to purchase them).

Requesting the Service: 

University Staff and Faculty are encouraged to use 2FA. Beginning June 25, 2014, CNetID account holders can visit the welcome page at 2FA.uchicago.edu to enroll in 2FA. Users who opt to use the mobile application will be prompted to download Duo Security’s mobile app. 

Service Levels: 
Support Contact: 

For additional information, see the 2FA documentation, or contact the ITS Service Desk by phone at 773-702-5800 (2-5800), email at itservices@uchicago.educhat, or get walk-in help at the TECHB@R on the first floor of Regenstein Library during reference desk hours.