What is two-factor authentication?

Two-factor authentication (2FA) adds an extra layer of security to your University accounts.

Verifying your identity using a second factor (like your phone or other mobile device) prevents others from accessing your accounts, even if they know your password.

How it works

Logging into 2FA protected sites and applications is as simple as accepting a notification on your phone, plugging in an authenticator, or entering a PIN from a text message or phone call. Enrol once to protect all of your supported services.

 enter password as usual

Enter your password

 verify your identify using your phone

Use your phone to verify your identity

 you are securely logged in

You're securely logged in

Get started now

Check out Duo's text-based enrollment guide

Please note: Should you visit the UWaterloo/DUO site and begin the enrolment process (i.e. click "Start setup”), but don't complete the process, you will be considered opted in and will be challenged when logging into 2FA protected applications or websites. 

Select a second factor tool and manage your devices

There are a number of criteria to consider in selecting a second factor option


Already enrolled? Visit the Device Management Portal to add a device or manage an existing device




Supported services

  • Outlook Web App (OWA)
  • Workday
  • Microsoft Office 365 web portal
  • Concur
  • Unit4
  • Quest
  • LEARN*

*2FA will be enabled on LEARN for off-campus access to the system


If you're a service owner looking to implement 2FA, please email rt-ist-iss-general@rt.uwaterloo.ca for more information.