Learn about 2FA

Two-factor authentication (2FA) adds a second layer of security for your Tufts Username by requiring:

  1. Something you know (your Tufts Username and Password), and
  2. Something you have (a physical device, like your phone)

In order to use 2FA, you will need to enroll at least one device.  We recommend you have a minimum of two devices enrolled.  You can enroll a smart phone, a tablet, a landline (office or home phone), or a basic cell phone/flip phone.

What to expect once you've set up two-factor authentication

Once you enroll in 2FA, you will see an extra page after you log into certain web applications. This page prompts you to verify your identity on the device you enrolled. If you do not have your default device available, you also have the option of using another device that you have previously set up.

The frequency that you are asked to authenticate on your default device varies, depending upon:

  • the website you log into
  • whether or not you select Remember me for 30 days
  • whether or not you use more than one computer and web browser (Remember me for 30 days is for each computer and each browser you use to access protected websites)
  • your individual browser settings (whether or not you clear cookies)

Why would I want to use two-factor authentication?

Information security breaches in higher education are of significant concern.  The following articles talk about different breaches that have occurred and what you should know about two-factor authentication.

MIT, Stanford University, Harvard University breachedHigher Ed data breaches at near record high in 2012Two-Factor Authentication - What you need to know

Video: Introduction to Two-Factor Authentication (3:04)