Enroll in Google 2-Step to keep your Google accounts safe.
2FA at NC State
Set User Identification and Authorization (UIA)
Duo for Shibboleth
2FA Training & Help
Before You Begin
- Be prepared to complete the process in its entirety; review the setup process and learn more about Google 2-Step
- Have your mobile phone, tablet, or U2F key with you
- Mobile phones must be able to receive SMS text messages.
- For more information on U2F keys, visit What is a security key?
- If you are using your smartphone or tablet, make sure you know how to install apps and have enough free space
- Learn more about common issues with 2-step verification
- To prevent yourself from being locked out of your account when you can’t receive verification codes, we strongly encourage you to do both of the following during setup:
- Add at least one backup phone number where a verification code can be sent.
- Print out the one-time use backup codes that Google provides and keep them with you.
You can use one of these instead of receiving a code on your phone.
Enroll in Google 2-Step
Individual Accounts at NC State:
If you are not already enrolled in Google 2-Step:
- Visit Google 2-Step Enrollment page and log in with your NC State Unity ID and password.
- Click Start Setup and complete the 2-Step Verification settings.
Generic Accounts at NC State:
All Generic Accounts are required to have Google 2-Step enabled by December 19, 2017. Visit 2-Step Verification Setup for a Generic Account for more information.
Add & Manage Your Devices
After you have enrolled your first device, you can add more devices and manage your existing devices.
- Visit Google 2-Step settings page and log in with your NC State Unity ID and password.
- Scroll down to “Set up alternative second step.” You can also access this page by visiting “My Account” when logged into Google or your NC State email.
- Some devices require an app password to connect (or stay connected) to your Google account:
- Devices running Android 2.3.x or older
- Mail app on Apple devices not running iOS 8.3 or greater on your iPhone or OSX 10.10.3 on your Mac
- Email clients (e.g., Thunderbird, Outlook, Mac Mail)
- Instant messengers (e.g., Pidgin, Adium)
About Google 2-Step
Google 2-Step adds Two-Factor Authentication to your Google account, including Gmail and Google Drive.
Google 2-Step adds Two-Factor Authentication for an extra layer of security for your Google account. When you turn on Google 2-Step, you will be required to log in with both your password and then an additional security measure, such as a code delivered via text, voice call or mobile app; USB security key; printed backup code; or a push (or pop-up) notification on your smartphone.
- Phone Call
Receive a code via a phone call to your landline or mobile phone.
- Text Message
Receive a code via text message on your mobile device.
- Google Prompt
Enroll in Prompt to allow push notifications to your device. Just one tap allows you to approve authentication requests, no typing required. Note: users of iOS devices will need to download the “Google Search” app to enable Prompt. All users: Prompt and U2F keys cannot be enabled simultaneously.
- Authenticator Apps
Authenticator apps give you the ability to generate a code, even without data service or Wi-Fi connectivity.
- Google Authenticator
- Available for iPhone, Android or Blackberry devices.
- Duo Authenticator
- Available for iPhone, Android, Blackberry or Windows devices.
- Can generate codes for both Duo and Google.
- Google Authenticator
- U2F USB Security Key
- To avoid using a code altogether, you can purchase and register a security key to insert into your computer’s USB drive when prompted. Any device that is Fido U2F certified can be used with Duo or Google 2-Step Verification in a Chrome browser. OIT has tested and used the following keys:
- Backup Codes
- Print a paper copy of the single-use backup codes Google provides and keep it with you.
- If your mobile device isn’t available, you can use one of those codes.
- Trusted Computers
- You can set up a computer that you trust and use frequently to access your Google account for 30 days without needing 2-Step Verification.
- Depending on the cookie settings in certain browsers, you may need 2-Step more often.
- For more information, see Add or Remove Trusted Computers.