Multi-Factor Authentication (MFA), Introduction

Multi-factor authentication (MFA) adds an extra layer of security to your University account by requiring an additional verification step during sign-in. Students, faculty, and staff must enroll in MFA before accessing many University services.

How MFA Protects Your Account

After entering your password, you will be asked to verify your sign-in using an enrolled device or authentication method. The University currently uses the Duo Universal Prompt for MFA sign-in across Microsoft 365, Shibboleth applications, and NetID Center services.

You will see different MFA prompts depending on where you are signing in:

The NetID Center also uses Duo Universal Prompt.

Duo Universal Prompt

How to Use MFA

When signing in to an MFA-protected service:

  • You may receive an MFA prompt if your account is already enrolled
  • If you are not enrolled, you will be guided through the setup process

You can manage your MFA devices at any time through the NetID Center.

Refer to the following articles as necessary:

Information on supported devices for MFA: Multi-Factor Authentication (MFA), Frequently Asked Questions

Information to enroll on MFA: Multi-Factor Authentication (MFA), Enrollment

Information on managing devices in the NetID Center: Multi-Factor Authentication (MFA), Device Management.

Troubleshoot signing into your account using multi-factor authentication: Multi-Factor Authentication (MFA), Troubleshooting.

If the troubleshooting steps there are not helping, or if you have any other questions about multi-factor authentication, contact the Technology Services IT Service Desk by email at consult@illinois.edu or by phone at 217-244-7000 for further assistance.

Planning ahead (e.g. when traveling or going to a testing center)

   If you will not have a cellular connection but can connect to Wi-Fi:

The Duo Mobile app can still receive push notifications over Wi-Fi. If push notifications are unavailable, you can use a Duo Mobile passcode from within the app.

   If you will have neither a cellular connection nor a Wi-Fi connection:

Open the Duo Mobile app and generate a Duo Mobile passcode:

  1. Select Other options at the MFA prompt
  2. Select Duo Mobile passcode
  3. Enter the six-digit code shown in the Duo Mobile app

If you do not have a smartphone, you can use a temporary passcode as mentioned above.

   If you will not have your cell phone with you:

You can request a temporary bypass code before traveling or visiting a testing center.

Temporary bypass codes:

  • Last 3 days
  • Allow up to 100 uses
  • Can be requested up to 24 times per year

Temporary bypass codes should only be used when necessary.

In addition to these options, Yubikey security keys can be used for authentication and are not dependent on an internet connection.

See Also


Keywords:
MFA, multi-factor authentication, DUO, Duo Mobile, NetID, University of Illinois MFA, authentication, security, login verification, mfa introduction, mfa overview 2fa 
Doc ID:
65971
Owned by:
Identity and Access Management G. in University of Illinois Technology Services
Created:
2016-08-10
Updated:
2026-05-21
Sites:
University of Illinois System, University of Illinois Technology Services
Clean URL:
https://answers.illinois.edu/2fa