Two-Factor Authentication (2FA)
Two-Factor Authentication (2FA) is an important component in Information Security. 2FA adds an additional layer of security protection to the authentication process by making it harder for attackers to gain access to a person's online account. Please refer to the following section “How it works” for more details about how 2FA can enhance the security of your account.
To enhance the protection of students’ personal data and tighten the information security of the University, Lingnan University has implemented the 2FA solution. It is mandatory for all students and will be extended to cover all IT critical systems for all staff.
2FA was enforced on e-mails, MyLingnanPortal, VPN, Moodle, Qualtrics and Helpdesk System. Students are required to pass the 2FA when login to the critical systems from networks outside of Lingnan University Campus’ starting from October 2, 2019.
2FA has extended to all staff to cover the access to their e-mails, MyLingnanPortal, VPN, Moodle, Helpdesk System, Lingnan Scholars, Qualtrics, and Remote Desktop. Staff can register the 2FA service started from August 1, 2019, and 2FA will be enforced for all staff on February 3, 2020.
The 2FA system requires an additional authentication layer in addition to your Lingnan username and password to ensure it is not any third party, but yourself, who accesses the services. This additional layer is usually a personal mobile device. By pairing your personal mobile device with a 2FA mobile app, the device will allow you to receive push notifications for easy, one-tap authentication. Because of this, you need to register for 2FA.
Please respond to the Push Notification using your mobile device when you need to access applications supporting 2FA e.g. VPN, OWA etc.
Please watch this video for understanding what is 2FA:
Why 2FA? [Video]
Is the service accessible from overseas?
Yes. The service is accessible worldwide. The mobile app works well even after you have changed to use another SIM card (another phone number) during your travel. Please remember to carry your registered mobile phone/device as it is an important device to verify your identity in order to access applications supporting 2FA.
If your mobile device does not have internet access, you can obtain ByPass Code from the 2FA Registration and Device Management A ByPass Code will be sent to your registered mailbox and you can use it for the 2FA authentication.
How to register?
Log on to the 2FA Registration and Device Management to activate or manage your account.
Please watch the video guide for the registration process:
Registration and Use of 2FA. [Video]
How to access?
After logging into the 2FA activated services from networks, you are required to approve your access using the Duo Mobile App.
[Important!!!] If you get an authentication request from Duo Mobile App that you weren't expecting, you must reject the request!
- How do I download the Duo Mobile APK? - Link to DUO to download the APK file, if you cannot install the apps using Google Play
- Register for 2FA Service - Step by step instruction on registering the 2FA service
- 2FA Authentication with Mobile App - Guide on how to use DUO apps for 2FA Authentication
- 2FA Authentication with ByPass Code - Guide on how to use ByPass code for 2FA authentication. (if your phone cannot install DUO apps, or if you cannot access your phone)
- Maintain Devices for 2FA - Instruction on adding, removing and re-register a device for 2FA.