Creighton’s Division of Information Technology is implementing "two-factor authentication,” or “2FA” for short. 2FA is an added security measure designed to ensure that you, and only you, are using your NetID and Blue password to access Creighton's online services, systems and resources.
Going forward, accessing virtual resources that are protected by a NetID and password will employ a "what you know + what you have" approach to cyber defense. It takes something you know (like your password or PIN) and combines it with something you have (like a smartphone app) in order to make your account more secure.
How will it affect me?
Creighton’s 2FA solution is provided by Duo Security. All staff will be enrolled in Duo by April 7th to maintain access to certain CU online services, systems and resources like myHR, Office 365, and Banner applications. All Creighton faculty will be enrolled July 21st.
Once you enable 2FA, you will see an extra step after entering your username and password on the login screen. This step prompts you to authenticate your identity using the default method(s) you set up.
Creighton is offering a couple of different ways for you to authenticate your accounts via Duo:
- Duo Mobile: a smartphone/tablet application that supports push notifications and Duo Mobile Passcodes
- Hardware token
This additional security step is becoming the standard in most industries and platforms, like banking, social media and email accounts. In fact, most people forget that most smartphones already require 2FA. We are excited to be at pace with industry and other institutions of higher education, including many of our fellow Jesuit universities, in bringing these important additional security steps to Creighton
What are the opportunities to learn more about Duo?
Yes, we currently have two campus-wide events scheduled. Additionally we will be addressing key groups on campus (ie. Academic Council, Staff Advisory Council, etc.) If you would like us to present this topic to your group, committee, college, school or department, please contact email@example.com.