Authenticating

The guide below shows how to log in to a 2FA-protected service using DUO.

Log in to the service with your 8-character UWaterloo username@uwaterloo.ca (e.g. j25rober@uwaterloo.ca) and password
When presented with the DUO prompt, click Send Me a Push.
In your browser, a verification code will display.

On your smartphone, enter the verification code when prompted and select Verify or I’m not logging in as appropriate.

DuoMobile_Android (002)-20240308-192711.png

Additional resources for enrolling in 2FA

Second-factor options

For alternative second-factor options, please see Duo two-factor authentication (2FA) and the VPN

Device management

For information on device management, please see Duo Management Guidearchived

Where is that push coming from?

When you receive a 2FA push notification on your phone, it will display the geographic location the access is coming from. Looking at this before approving the prompt provides an extra level of assurance that you are approving the correct login. If the location is incorrect or you are not actually logging in to a 2FA-protected service, you should deny access and report it as suspicious. See also, What do I do with an unexpected 2FA notification?

Need help?

Contact the IST Service Desk online or 519-888-4567 ext. 44357.

Article feedback

If you’d like to share any feedback about this article, please let us know.

IST Knowledge Base