Multi-Factor Authentication

Reminder: Effective April 17, Multi-Factor Authentication (MFA) will be required for faculty and staff to access the following systems from off campus:

  • via Outlook Web Access (OWA)/Office 365

  • Time and Attendance

Students will need MFA to access:

  • Box (

  • Sakai (

  • Duke email (

duo key icon for passcodes

If you are using these services while traveling, consider getting passcodes using the key icon on Duo.

Or by requesting temporary passcodes in advance of travel. 

Protect your Duke accounts using Multi-factor authentication (MFA), also called advanced or two-step authentication. MFA provides an additional layer of security when logging in or performing transactions online and at Duke.

When logging in using MFA, a user is required to authenticate their identity using a second factor, typically via a phone or separate passcode.

MFA is required for many Duke services, including Work@Duke, Duke Health VPN, and clinical systems. Other services (such as email, DukeHub, Sakai, and Box) require MFA for access off the Duke network. If desired, you can further protect your identity by opting in to additional account requirements on the MFA registration site.

The IT Security Office strongly recommends using multi-factor authentication when using all NetID protected services.  It is especially recommended for access to critical systems or systems storing sensitive data per the ITSO Security Standards.