June 30, 2021

Expanded use of 2FA on the web: Take action for better data security

The following message was sent because campus leadership is requiring all University staff to adopt 2FA when signing in with a UW NetID and password on the web. If you have already adopted 2FA on the web, you can ignore this message.

Expanded use of 2FA on the web: Take action for better data security

To strengthen security for personal and institutional data, you can take advantage of two-factor authentication (2FA) when signing in to your UW NetID and password on the web. Beginning August 31, 2021 or sooner if you opt in early, when you sign in with your UW NetID on the web, you will be prompted to use your 2FA device, such as Duo Mobile, after you enter your UW NetID and password.

Like many other higher education institutions that have adopted this security best practice, the UW’s broadened use of 2FA significantly reduces the risk of compromised passwords from phishing and other scams that target University employees.

You already use 2FA when you sign in to Workday, and you may be using 2FA for other UW systems. With 2FA’s additional layer of security, you sign in first with your UW NetID and password, and then use a 2FA device, such as Duo Mobile, to confirm your identity.

Now you can protect more systems with 2FA on the web, such as MyUW, and websites and other web-based services that require UW NetID authentication. Some desktop and mobile apps, including Zoom and Husky OnNet, also rely on UW NetID sign-in via the web.

Who will be impacted by the August 31 requirement?

  • This require-by date specifically applies to all staff at the Seattle campus and at UW Tacoma; it does not include faculty. (UW Bothell staff are already using 2FA on the web.)
  • It does not include UW Medicine employees.

How to opt in to 2FA on the web

  1. Go to Identity.UW, sign in with your UW NetID and password, then select the “2FA” tab.
  2. Click “Opt in to use 2FA on the web.”
  3. Click “Confirm.” Be sure to keep your 2FA device with you after you opt in.

For more information, visit IT Connect’s Opt in to use 2FA on the web.

Reduce frequency of 2FA prompts on sites you use often

You can reduce the number of times you are prompted to sign in with your 2FA device by clicking the remember me option on trusted computers. Note that this remember me option may not work in all instances.

Thank you for doing your part to help protect your personal and institutional information at the UW.

Sincerely,

Aaron Powell, Vice President for UW-IT and Chief Information Officer
Brad Greer, Associate Vice President for IT Infrastructure and UW-IT Chief Technology Officer
Rebekah Skiver Thompson, Associate Vice President for CISO and Chief Information Security Officer