UC San Diego SearchMenu

Two-Step Login: VPN

Learn how to use two-step login with campus VPN connections.

Two-Step VPN Groups

You'll see the following VPN groups listed below when attempting to establish a connection. Faculty, staff, and students who are required to use two-step login to connect must use a group labled "2-Step Secured." Otherwise, an error message will appear and the connection won't go through. Those who aren't required to use two-step login can use any group; however, "2-Step Secured" groups require use of two-step login.  

Groups

2-Step Secured - EasyConnect
2-Step Secured - M2938
2-Step Secured - Affiliate
2-Step Secured - Allthruucsd
2-Step Secured - hsuser
2-Step Secured - split
EasyConnect
M2938
Affiliate
Allthruucsd
hsuser
split

 

Two-Step Login Options and VPN

Main/Default Device

Duo automatically engages your main device to complete the two-step login process. 

If you don't want to use the default device, consider the options below for entering a passcode or specifying an alternate device.

Note: Have your default device ready when you sign in to VPN. If you wait too long to confirm, the VPN will time out and your log in will fail.

 

vpn-prompt.png

Passcode

To use a passcode, follow this process:

  1. Select a two-step group as described above
  2. Enter username and password as usual.
  3. Don't click OK just yet! Immediately after your password - no spaces - type a comma followed by the passcode. Here's how it would look, with standard credentials in black and added passcode in red:
    • Username: msalah
      Password: 11g0@lscorer,562737

      2-step-VPN-Mac-passcode

       

Alternate Two-Step Method

You can also use a variation of this method to use a two-step method other than your default preference. For example, you normally get a push notification, but want to receive a call instead. Here's how it would look:

2-step-VPN-Mac-phone

Now instead of getting the push, you'll receive a phone call to complete two-step login.

Below are the word options and resulting actions of this method: 

  • push: receive push notification (if Duo installed on phone and device registered)
  • phone: receive call
  • sms: receive a batch of 10 passcodes via text (your first log in attempt will fail; do again with newly-received passcodes)

This also works if you have multiple devices - for example, two landline phones. Simply add the number of your device to trigger it - for example, phone1, phone2 or phone3. This is called "append mode," and more information is available from the online Duo guide