Multi-factor authentication (MFA)

Also appears as DUO

What is multi-factor authentication?

Multi-Factor Authentication (MFA) adds extra security, in addition to your username and password, by asking you for another piece of information via your cell phone, tablet or land line.

This added layer of security is accomplished by utilizing a solution provided by DUO. Your participation in using DUO for MFA helps protect UCLA Health data and network as well as your own online identity and personal information.

    Access type:

    • Self-Service
    • Fully subsidized 

     

    Enroll in MFA using Duo

    In order to access the MFA Enrollment Portal you will need to be on the Mednet network. If you plan to use a mobile device (mobile phone, tablet, etc.), you will want to download the Duo Mobile application to the device prior to starting the enrollment process. 

    Enroll in Duo mobile

     

    You may also contact Customer Care at (310) 267-CARE. Specialists are available 24/7 to enroll you in Duo. Please be aware that Customer Care Specialists will confirm your identity prior to enrolling you into Duo.

    Remote Work with DUO

    Users need their Mednet username and password as well as DUO for multi-factor authentication to access remote work options and tools.

    If you are using a personal computer to work remotely, you can quickly connect to many applications on the web using just your Mednet login and DUO for multi-factor authentication.

     

     

    Service frequently asked questions

    Do I have to use MFA?

     

    You must use MFA if you wish to remotely access a Virtual Private Network (VPN) or other Mednet systems, including Box, Mednet email, and CareConnect Remote. You will not be permitted to connect to these utilities until you have set up MFA.

    Why do I have to use MFA?

     

    MFA is a critical safeguard against cyberattacks. It helps keep your login information out of the wrong hands by requiring two methods of identification. This makes it difficult for hackers to masquerade as you.

    What do I do if I do not have cellular or wireless service and need to access an application that requires DUO for multi-factor authentication?

     

    There are two authentication methods available when you lack cellular or wireless service. Please see our Duo for Multi-Factor Authentication Travel Tips for step-by-step instructions.

    What do I do if I receive an unexpected request from DUO?

     

    If you receive an unexpected request from DUO via the mobile app, tap the red Deny button and contact Customer Care immediately at 310-267-CARE so that IT Security can determine the origin of the login request.

    If you receive an unexpected phone call request for authentication from DUO and were not attempting to access a DUO-protected system, press 9. This will mark the phone call as fraudulent and will notify IT Security so that they can review the incident.

    What if I get a new mobile device?

     

    Additional devices can be enrolled via the Multi-Factor Authentication Enrollment Portal (must be on the Mednet network to access this site). Through the enrollment portal you can also specify which device and authentication methods will be used as your default. If you require assistance, contact Customer Care at (310) 267-CARE. 

    What applications/capabilities require DUO?

     

    Additional devices can be enrolled via the Multi-Factor Authentication Enrollment Portal (must be on the Mednet network to access this site). Through the enrollment portal you can also specify which device and authentication methods will be used as your default. If you require assistance, contact Customer Care at (310) 267-CARE. 

    • VPN Access
    • Remote access to Mednet Email via Mednet Homepage
    • CareConnect Remote
    • ServiceNow
    • UCPath
    • UCLA Campus applications using Single Sign-On