By now you have heard of the new two-factor authentication
(2FA) requirement coming from UTK’s Office of Information Technology (OIT). 2FA
is being implemented to protect the Institute’s data (and your own!) by adding
an extra layer of security when logging into certain accounts. Your username
and password are considered “something you know,” and Duo, through a
smartphone, tablet, or hardware token, is considered “something you have.” We
have seen an increase in the number of compromised accounts due to hackers
harvesting usernames and passwords through the Internet. This extra layer of
security greatly reduces the possibility of the hacker getting through to the
data.
At this time, logging into any account authenticating
through the Central Authentication Service (CAS) will be affected. The apps
using CAS include Banner, Canvas, Cayuse, Elements, Faculty Review, K@TE,
Lynda.com, MyIRIS, OIT Software Distribution, QuestionPro, SUPER, SUPER 2, and
Zoom. In the future, other apps, such as Office 365 (including email) and the
VPN, will use 2FA.
Since many of our people across the state are busiest
between March and September, the Institute’s faculty and staff may opt-in
from January 21 – February 28. This gives six weeks for individuals to
voluntarily opt in. Beginning in March, OIT will turn on 2FA for any
remaining Institute faculty and staff. To be able to meet these dates, I
have asked OIT to include our timeline in their communications.
Please visit https://2fa.utk.edu,
for more information, as well as instructions for
setting up Duo 2FA. The OIT HelpDesk, at (865) 974-9900, has been trained
to answer all your 2FA and Duo mobile app questions, so give them a call if you
need help.