UI Verify Help Guide
Getting set up
Visit the "Get Started page," which will walk you through the process of setting up your DUO account and connecting a device.
For additional information, see our Knowledge Base guide on registering.
- Smart Phone
- The easiest option requires a free DUO mobile app downloaded on your smartphone. Duo Push technology will send you a push notification to your smartphone, allowing you to approve or deny the login request. The app can also generate passcodes without needing a network connection. Open the DUO Mobile app and select the key icon to the right of the University of Illinois to generate a passcode. Then enter that passcode on the 2FA screen. Text new codes will send you a passcode that can be used only one time on the login page. Note: If the app is slow to download (more than a couple of minutes) then kill the other apps that could be downloading and try again.
- Duo Push technology will send you a push notification to your tablet, allowing you to approve or deny the login request. The app can also generate passcodes without needing a network connection. Open the DUO Mobile app and select the key icon to the right of the University of Illinois to generate a passcode. Then enter that passcode on the 2FA screen.
- Cellular Phone
- A text or phone call with a code can be received with your cell phone.
- Landline Phone (non-University number)
- A non-University phone number can be used to authenticate. Some university phone numbers are in shared spaces and are not considered secure. Lync phones are not considered a second factor and can't be used for authentication purposes.
- If none of the above are viable options, you can request a token for authentication. The token is a physical device that will generate a numeric passcode. Since the token is associated with an account, tokens cannot be shared, but can be transferred. Only tokens purchased through the University of Illinois WebStore will work as a second factor. They are set up with the private identity and secret key for the University's 2FA service. The University has a tightly-controlled provisioning process to meet the University's security needs. While any staff or faculty member can purchase a token through the University of Illinois WebStore, you may want to check with your manager or department lead on the process for providing tokens to its employees. Please see our Knowledge Base guide guide for more information about tokens.
Supported mobile devices include iOS, Android, and Blackberry, and other cell phones and landline phones. Supported tokens are the Yubikey and the OTP C100. More information is available in our Knowledge Base guide to devices.
You are not required to, but this is the most convenient option. You can also use a token for 2FA, which can be purchased through the WebStore by your unit.
If you are using your personal device, the device itself has accessibility settings that can help you use it for 2FA. If you use a token, contact 2FA Support, who can help you select and register your device.
Reactivate Duo Mobile by clicking My 2FA Account link at the top of this page. You will be required to authenticate. If you have a new phone with same phone number, you can authenticate via phone call or text message but not push notification. Once authenticated, select Device Options - Reactivate Duo Mobile. It will walk you through the steps similar to when you first set up your smart phone.
If you have a new phone number, you will need to contact your campus Service Desk. Their numbers are at the bottom of this page. More information is available on our Knowledge Base guide on devices.
If you have registered a non-University email with your 2FA account, you can request a temporary passcode that will allow you to authenticate even if you don't have access to your device.
If you do not have an email registered, you can contact your Service Desk for assistance. (You are strongly encouraged to add a non-University email address to your 2FA account so you can easily request a temporary passcode when needed.)
If you have lost a device, you can disable it by visiting My 2FA Account. If the lost device is your only registered device, you will not be able to remove it. Please contact your Service Desk for additional help.
If you have registered a non-University email with your 2FA account, or if you have your registered device, you can request a temporary passcode that will allow you to authenticate even if you don't have access to your device.
If you are visiting a University testing center, remember to copy down your passcode, as you won't be able to access your email to retrieve your temporary passcode.
If you use the Duo Mobile app with your device, you can generate a code using the app even if you have no internet or phone signal. Open the DUO Mobile app and select the down arrow to the right of University of Illinois. A 6 digit code will appear that you can use to authenticate by selecting Use a passcode and enter in that 6 digit code.
Hardware tokens require no external connection and might be a good choice if you routinely work in a place without reliable internet or phone access.
For short-term use, you can request a temporary passcode to manually enter when prompted to authenticate. You will need to have a recovery email set up in UI Verify (your temporary passcode must be sent to a non-University email address). Temporary passcodes are valid for 3 days and can be used 100 times. Visit temporary passcode, select No I don't have my device, and a temporary passcode will be sent to your Non-University email address. To authenticate using this passcode, select Temporary Passcode from the drop down, enter the passcode from your Non-University email and select Enter.
Verifying your identity
This will depend on the application you are using.
- Banner forms/HRFE/PARIS/NEWT/HR Reporting Portal - One time per day*
- Shibboleth (signon system) - One time every 12 hours*
- My UI Info - required to authenticate with each login attempt when not connected to the University network.
* Unless the user clears cookies/cache, the IP address changes (for example, they use a laptop and go from desk to a meeting); or if they log out or close their browser. The user will need to authenticate with each browser that is used.
I received an authorization request on my device, but I am not trying to log in. What do I do? ShowHide
Receiving a request when you are not attempting to access a University application means that your account might have been compromised. Please contact the Service Desk immediately to secure your account.
Call the Service Desk at (217) 333-3102 (from Urbana-Champaign or Springfield) or (312) 996-4806 (from Chicago).