Two-step Login FAQ

What is two-step login?

Two-step login (also known as two-factor authentication or NetID+) provides enhanced protection for your Rutgers account and information by using a smartphone or other device to confirm your identity. This prevents anyone but you from accessing your account, even if your password has been compromised.


Why should I sign up for two-step login?

Using two-step login protects your information and makes the university more secure. Two-step login protects personal data, such as direct deposit information and social security numbers, as well as sensitive university data. By using two-step login, you're protecting yourself and the university from hacking, phishing, and other cyber-attacks.


What is Duo Security?

Duo Security is the provider of two-step login at the university.


Do other universities use two-step login with Duo Security?

Duo Security is the leading providing of two-step login in higher education. Two-step login is a requirement for accessing university resources at Harvard, Indiana, MIT, and Penn State, among many other institutions.


What methods can I use to verify my identity with two-step login?

As outlined in below, the mobile app (with a smartphone or tablet) is the preferred method:

How do I sign up for two-step login?

Setting up two-step login takes about five minutes. To sign up, visit the two-step login sign-up page from a computer.


What do I need to sign up?

You will need to have access to a computer to sign up. If enrolling a mobile device, please have that device available.


What happens when I'm enrolled?

Once enrolled in two-step login, you will verify your identity via your mobile device or another method after entering your NetID and password.


Do I need a backup for my mobile device when using two-step login?

You are strongly encouraged to enroll more than one method of verifying your identity, just in case your primary device (i.e., a smartphone or tablet) is not available. You can use any device enrolled with two-step login to verify your identity.


What is a "hardware token," and where do I get one?

A hardware token is a special physical security device used confirm your identity with two-step login. Learn how to get a hardware token.


How do I use a hardware token for two-step login?

When logging in to a webpage or application requiring two-step login, choose the Enter a Passcode option and then press the button on your hardware token to generate a new passcode. Then type the passcode into the space provided on your screen to log in.


How do I use an SMS passcode to verify my identity?

You're able to generate passcodes to use to verify your identity. Learn how to generate passcodes.


What do I do if I lost my device or it is unavailable?

If you lost your device or do not have it available for two-step login, contact your department's IT staff or the Office of Information Technology Help Desk. To avoid this situation, please enroll more than one device or method for verifying your identity.


I will be traveling internationally. Will I be able to access university resources and services with two-step login?

Yes, you can use Duo two-step login when traveling abroad. All available authentication methods should work. If cellular service or internet access are not available, the "mobile push" method will not be available from your device. In this case, you can still use SMS passcodes or a hardware token. Note that you're able to request ten one-time use passcodes to be sent by text message before you travel. You can also request a bypass code from the Office of Information Technology Help Desk. Learn about obtaining a bypass code before you travel.


I have additional questions. Where can I find answers?

Please view our additional FAQs for more information.


Where do I get support for two-step login?

For assistance, please reach out to your department's IT staff or the Office of Information Technology Help Desk.