Skip to content

Multifactor Authentication (MFA)


MFA is an additional means of protecting you from unauthorized use of your applications and data if your user ID and/or password becomes compromised. UCOP is using software called “Duo” to implement MFA.

When you log into an application requiring MFA, after entering an ID and a password, you’ll be prompted for additional verification via a push to your mobile device or by entering a six-digit code generated by the mobile app or a stand-alone hardware token.

By March 31, 2018, MFA will be required for most UCOP Web Single Sign On applications, Microsoft Office 365 online applications such as Outlook and (when accessed from offsite) myCloud.

A single MFA authentication will last for 10 hours per browser session, unless the specific application requires a login on each use (such as UCPath). If you forget your mobile device or token you can call the Service Desk for a temporary code.