On March 30, 2018, University IT will change login and two-step authentication services to make them more usable, more reliable, and easier to maintain. Login and two-step authentication will look a bit different but they will still be simple to use.
- Changes to login screen
-
On March 30, the web address for login will change from weblogin.stanford.edu to login.stanford.edu. You will be automatically redirected to the new web address.
The new login screen will look and function very much like the current login screen, with these exceptions:
- The text at the top of the page will say "Stanford | Login" instead of "Stanford | WebLogin."
- The help link text will say Get Support instead of WebLogin Help.
- The Forgot Your Password? link will appear on the initial login screen. This link lets you change your password on the Stanford University Accounts website without logging in. Before March 30, this link only appears after a failed login attempt.
The checkbox currently labeled "I use this machine regularly" and located just above the Login button will be removed.
New login screen:
- Changes to two-step authentication screens
- For websites and applications that require two-step authentication, a revised two-step authentication screen will be embedded within the login screen. This screen includes:
- A Stanford logo.
- A list of authentication methods that you have set up and buttons to choose one.
- A checkbox that will remember your two-step authentication for 90 days.
New two-step authentication screen:
If you choose a Push as an authentication method, the Login Request sent to your device will have a different Stanford logo starting March 30. The text beneath the logo will also change from "Isdb Auth API" to "Two-Step."
New Push notification:
- Alternatives to printed list two-step authentication
- As of March 30, 2018, you can no longer request a printed list for two-step authentication. If you use a printed list to authenticate, choose one of these simple and reliable alternatives:
- If you need to authenticate without an internet connection, cellular connection, and/or a mobile device:
- Use the Duo Mobile app passcode, which requires a device but does not require an internet or cellular connection.
- Use a hardware token, which does not require an internet connection, cellular connection, or device. Tokens are available from the Stanford ID Card office.
- Use a call to a mobile phone or a call to a landline.
- If you can authenticate with a smartphone or tablet, Duo Push is the recommended method; it is quick, simple, and secure.
- If you need to authenticate without an internet connection, cellular connection, and/or a mobile device:
- Alternatives to SMS two-step authentication
- University IT does not recommend using SMS for two-step authentication, because the National Institute of Standards and Technology (NIST) has reported that SMS authentication is less secure than other two-step authentication options. If you authenticate using SMS, consider changing to Duo Push. This recommended method is quick, simple, and secure. You can review other ways to authenticate on the Two-Step Authentication website.
You can change your authentication options on the Stanford University Accounts website. Choose the Manage button and the Two-Step Auth tab.
- How to get help
- Review our Login and Two-Step Authentication FAQ webpage for answers to frequently asked questions. If you need help with login or two-step authentication, please submit a Help ticket.
