Duo security requirement for VPN
January 5, 2016
David LaPorte
Share |
IMAGE: merit.edu

As part of the ongoing rollout of Duo Security two-factor authentication (2FA) to the MIT community, on January 13, 2016 the IS&T remote-access VPN service (vpn.mit.edu) will begin requiring 2FA by users who have already enabled two-factor Touchstone authentication.

For users who have signed up for two-factor authentication, connecting to vpn.mit.edu using the AnyConnect VPN client on or after January 13 will result in a failed login with the following message:

‪"You are configured for Duo two-factor authentication and must use Duo to connect through the VPN service. Please visit https://vpn.mit.edu/duo to log in using Duo. For guidance, see the Knowledge Base." ‪

For instructions on how to connect, go to the Connect to a Duo-protected VPN account with Cisco AnyConnect page in the Knowledge Base.

‪We recommend that you begin using this new connection method immediately to avoid potential issues when the change is implemented. If you have questions or need assistance, contact the IS&T Service Desk (617.253.1101).