We want to hear from you! Take the survey.
How do you use It’s Your Yale? How can it be improved? Answer for a chance to win Yale swag.
DUO/MFA and VPN login changes for a more secure Yale - Nov. 5
October 11, 2023
Summary
- Beginning at 7 a.m. on Sunday, November 5, Yale’s Multifactor Authentication (MFA) tool, DUO, will have a new, more accessible look and feel.
- The process for DUO/MFA remains similar to what you are using today, although the option to receive a code via text will no longer be available.
- Yale’s VPN login will now prompt for your email address - See Details section for more information.
Details
Screen design changes
DUO/MFA will have a new look that meets Yale’s usability and accessibility guidelines. View this preview of the new screen design:
What does this mean for you?
You will continue to log in with your Yale NetID and password. The system will prompt you with the new DUO screen, with a default choice: DUO Push or phone call. If you do not want to use the default option, select ’other options’ to choose a different method.
The option to request SMS text codes will no longer be available. Please visit mfa.its.yale.edu to enroll a device or set up DUO Push on your device.
Why are we making this change?
The new interface enhances accessibility and enables advanced security features, including:
- Prompting you to select the most secure authentication option to help protect your credentials when using a public or shared device.
- Remembering your chosen authentication method for each browser, reducing steps.
- Enabling Yale to introduce more secure options in the future, e.g., hardware tokens and biometric options (like Touch ID and Face ID).
Will DUO/MFA still remember me for 90 days?
DUO/MFA will continue using the ‘Remember me for 90 days’ feature.
Upon login, DUO will ask, “Is this your device?” If you select “yes’, DUO will remember your login credentials on that device and browser for 90 days. This subtle change helps people understand when they should and should not use the ‘remember me’ feature. After every 90 days, the system will prompt again.
Updated login prompt for connecting to VPN
Virtual Private Network (VPN) connections will all use the same web-based login screen. This screen will be familiar to anyone who logs in to online Microsoft tools like Outlook or Teams. When you connect to Yale’s VPN, a second window will open, prompting for your email address and password. Note: This is a change from the old login that required a NetID and password. Upon login, the screen will direct you to the new DUO MFA experience.
Need help?
You will receive a series of communications reminding you of this change. In the meantime, if you have questions about the new DUO prompt, please contact the ITS Help Desk at 203-432-9000 or visit our website to view the answers to trending questions, search how-to articles, start a chat, or report a problem.
CHG0088501