Multi-factor Authentication at RIT

RIT is improving online application security by requring multi-factor authentication when accessing applications that store sensitive data.  Multi-factor authentication is a way of ensuring that only you are able to access your accounts in these applications.  In addition to your username and password, multi-factor requires you to provide an additional verification step to prove it is really you accessing your account.  

How it Works

Multi-factor login turns your login into a two-step process.  When accessing sensitive applications, your login experience will have the following steps:

1. Enter in your RIT username and password, as normal
2. Confirm your login through one of the following methods:
   • Push notification to the Duo Mobile app on your smartphone (preferred method)
   • Confirming a text message code sent to a phone number set up in advance
   • Responding to an automated phone call to a phone number set up in advance
   • Bypass codes for those who do not have a phone
   • Entering in a passcode from a hardware token or provided in person at the RIT Service Center

Because a successful login requires both a correct password and access to verify the login through Duo Security, it makes it much harder for an attacker to use a lost or stolen password to access your account.

More Information

• Enroll in multi-factor authentication
• Frequently Asked Questions
• Duo's Guide to Two-Factor Authentication (not RIT-specific)