The University of Tennessee is implementing two-factor authentication, or 2FA, for access to UT online resources.Sign up now
Once you sign up for two-factor authentication and change your NetID password to a new one, your password will no longer expire.
Learn more about two-factor authentication.
What is two-factor authentication (2FA)? Two-factor authentication is a second layer of security. In addition to your NetID and password, you will also use something that you have, such as your smartphone to log in to your account.
Why do we need 2FA? Account compromise is currently recognized as our biggest cyber risk today. 2FA combines with your NetID and password to provide a significant layer of protection against this risk.
Most of us spend at least some time each day on the internet, whether it’s at work, at home, or on the road. As your time online increases, the more cyber threats you are exposed to. When someone breaks into your account without your knowledge or permission, everything on your computer or device is at risk. If that computer or device is part of a network, the harm can quickly spread. Even with password protection training and software in place, these attacks occur regularly on campus. They cause gaps in service, consume staff time and resources, and put institutional and individual information at risk.
You can protect yourself and your personal information, as well as university data, by signing up for 2FA. Think about what information is available in MyUTK; hackers have access to this information and more by knowing your NetID and password. 2FA protects your account against this threat.
When will 2FA be required? 2FA will be required for all students on or shortly after October 22, 2019.
Where can I sign up? Sign up online at 2fa.utk.edu; it only takes 3-5 minutes. OIT recommends signing up from your computer or laptop; have your smartphone available to download and register the app.
What if I don’t have a smartphone? Students without a smartphone can request a hardware token at 2fa.utk.edu/token. The hardware token will generate a temporary passcode to grant access to your account.
Do I have to use two-factor every time I sign in? You can choose to “Remember Me for 7 days” when you log in and use 2FA through a web browser. If you clear your cookies and cache, this setting will be reset.
When do I need to use two-factor? Currently, Microsoft Office 365, Google G-Suite, and any application using UT’s Central Authentication Service will require two-factor. Additional information regarding the schedule and applications is available on The Office of Information Technology’s 2FA website.