About Two-Factor Authentication


Starting August 28th, all Salt Lake Community College faculty and staff will be required to use Two-Factor Authentication (2FA) when logging into certain applications. 


2FA provides additional security to your account.  After entering your username and password, you will need to provide a second method of verifying your identity before you can log in.  This second method is something you have access to, like your cell phone, a tablet, or a hard token.  This ensures that even if a hacker obtains your username and password they still cannot access your account without access to your secondary device. 


Why is Two-Factor Authentication required?

2FA helps protect you and the college from unauthorized access.  It is easier than you may think for a hacker to get your password.  The following are just some of the actions that can put you at risk of having your password stolen:


  • Downloading software from the internet
  • Using the same password on different websites
  • Visiting malicious or hacked websites
  • Clicking links in your email
  • Accessing your account from a shared or public computer
  • Using easily guessed passwords


2FA can prevent a hacker from accessing your account, even if they have your username and password.


What services will require Two-Factor Authentication?

2FA will be used to protect applications containing Personally Identifiable Information (PII) and other high risk servers and applications.  These applications include, but are not limited to:

  • Mypage
  • Banner
  • Canvas
  • Webmail



Two-Factor Authentication (2FA) Frequently Asked Questions


What is DUO?

Duo is the college's partner for Two-Factor Authentication.  DUO is highly secure and has user friendly mobile app for authenticating to SLCC applications.


Who is required to enroll in Two-Factor Authentication?

All SLCC employees and student employees will be required to use DUO 2FA when accessing applications such Mypage, Banner, Canvas, and webmail.  


Why do I have to enroll in Two-Factor Authentication?

It has become increasingly common for hackers to obtain user passwords.  Two-Factor Authentication ensures that even a hacker obtains your username and password they won't be able to use this information to access your account.  

Two-Factor Authentication is used at many colleges and businesses and has been proved very effective in stopping cyberattacks and phishing.


When will I have to enroll in Two-Factor Authentication?

By August 28th, all users will be required to be enrolled in 2FA.  Everyone is encouraged to enroll as soon as possible to prevent authentication issues after the 28th.  Anyone not enrolled by the deadline will not be able to log into MySLCC, Banner, Canvas, or Webmail until enrolled.

OIT will likely receive a high number of calls, and expect significant Help Desk wait times on that day.  Enrolling early will help you avoid those wait times if you need to contact Help Desk.


How do I enroll in DUO 2FA?

To enroll in DUO 2FA, visit and login.  You'll then be walked through the enrollment steps.  For detailed instructions on enrolling, visit  

Once you begin the enrollment process, it is important that you complete it.  


What can be used as a Second Factor for Authentication?

Any device that is able to download and install the Duo Mobile app can be used as a second factor.  This includes smartphones running windows, iOS or Android, and tablets running iOS or Android.  You can also purchase a hard token from the bookstore. 


Do I have to use my phone as a token?

No.  Although the DUO Mobile app is the easiest way to use 2FA, we understand that not everyone will have a smartphone or tablet they can use.

You can purchase a hard token from the bookstore for $24.  The hardware token will display a 6-digit passcode you'll need to enter to gain access to your account.  Tokens are available at the sponsored accounts desk of the Redwood, South City and Jordan bookstores.


How do I enroll and use a hardware token?

Hardware tokens must be registered before they can be used.  To complete the registration, visit:  For instructions on using a hardware token, visit


How do I use DUO 2FA?

For instructions on using DUO 2FA with your phone or tablet, visit  Your phone or tablet must be enrolled before it can be used for Duo.


Can I enroll multiple devices?

Yes.  Enrolling two devices can ensure you continue to have access to SLCC systems one device gets broken, but it is important not to store a device in a place where someone else can access it.  For help registering a second device, see 


Can I enroll a device that does not have internet access?

You will need internet access to download and activate the DUO app.  After those steps are complete you can use the app without internet access.  When you need to enter your 2FA code, you will open the app, click the key icon on the right side of the screen, and enter the passcode that is displayed. 


What do I do if I've lost my phone / token?

Contact the helpdesk at 801-957-5555 as soon as possible.  It is important that we deactivate that device from DUO so no one is able use it to gain access to your account.  


What do I do if I get a login notification, but I haven't recently tried to login?

If you ever get a DUO verification request that you didn't initiate, someone else likely has your username and password.  You should click on "Deny" on the Duo app.  You will then be given two options, "It was a mistake, and "It seems fraudulent."  Click the "It seems fraudulent" option, and contact the help desk at 801-957-5555.  You should also change your password as soon as possible.


What data is collected stored by DUO?

Duo stores your name, userID, email address and limited device information.  This information is not used for marketing and is not shared with 3rd parties.  DUO does not collect any user created data or location data from your phone or tablet.


Will OIT reimburse me for my cell phone / token?

OIT will not reimburse users for purchases of hard tokens or cell phone usage.  Work with your departments budget manager if a hardware token is needed.