Two-Step Verification (Duo)

Available To

Campus Faculty and Staff

Service Overview

Two-Step Verification (also referred to as two-factor or multi-factor authentication) adds a second layer of security to your login.  Two-Step means that when you log into certain campus applications, you provide two proofs of your identity.  At CSULB, that means entering your BeachID user ID and password plus using authentication services provided by Duo Security, a company that provides Two-Step Verification service to most CSU campuses.

Verifying your identity using a second factor prevents anyone but you from logging in, even if they know your password.  A Two-Step Verification method is stronger than a password alone because two factors confirm that you are who you say you are:  something you know (your password) and something you have (a mobile device or hardware token).  

Service Details

Common Financial System (CFS) users will automatically be required to use Two-Step Verification when logging in. 

Duo 2-FA Illustration


Supported Devices

Device Type Device Type
Mobile Devices

iOS devices (iPhone, iPad, Apple Watch)

Android Phones and tablets

Hardware Token Tokens available upon request

Hardware Token

Hardware Tokens can be requested as part of the Finance Application Authority (FAA) process. If you'd like your second-factor device to be a hardware token after completion of the FAA process:

  1. Please check with your Administrative Services Manager (ASM), department coordinator, or their designee.
  2. If approved, your local technical team will provide you with a hardware token and will submit a request with the Division of Information Technology security team to activate your new device.  
  3. Allow two business days before the service request is processed and the token is ready for use. You and your local technical team will be notified via the IT Help request when the device is ready for use.