Multifactor authentication (MFA) is a way to confirm that a username and password are being entered by an authorized person, and not someone who obtained the login through a data leak or phishing attack. Examples of MFA include:
- Sending a confirmation prompt to your phone or mobile device
- Requiring a code from a text message or a previously generated list
- Using a card or hardware token on the computer/system
CUIMC VPN, and some CUIMC department specific Citrix environments, require MFA via a program called Duo. Duo is already being used at Columbia University for many online systems, however any existing CU account in Duo cannot be used with CUIMC VPN; a separate CUIMC account must be set up. After set up simply log in to VPN as usual and use your selected method for MFA.
How Duo Works
Sign in to the CUIMC Duo enrollment form with your UNI account and password.
TIP: Your UNI account is the same one used to login to myColumbia or CourseWorks.
The form walks you through selecting your preferred authentication method and any other steps to complete set up. A list of the methods and brief instructions are also on the How to Enroll page. Methods include:
- Push Notification - via the Duo app installed on a smartphone or tablet. When you need to authenticate, your cell or wifi connected device will prompt for approval within the app.
- SMS/Text Message - one-time use passcodes are sent by text message to enter when needed.
- Phone call - Duo service can call a landline or cell phone number to prompt for authentication approval.
- Passcode - the Duo app can provide a one-time passcode even if the mobile device is not connected to wifi or cell service.
Devices that can be used with Duo include:
- Smartphones - iPhones, Android devices, Blackberry and Windows phones.
- Tablets - iPads and Android devices
- Basic cell phones - with or without text capability
- Landlines - a work/desk or even home phone