2FA required for all accounts by end of 2021


Published: 1Feb2021

Two-factor authentication (2FA) is applied to all new McGill student and staff accounts as of January last year. Since May of 2020, remote access to McGill systems through the Virtual Private Network (VPN), also requires 2FA. 

To promote a safer online environment and ensure protected access to all systems, McGill is joining higher education institutions around the world in implementing 2FA. 2FA will be required for ALL McGill accounts by the end of 2021.  

Why are we doing this now? 

Many of our activities that used to take place in-person have moved online – work, teaching, studies, purchases, etc. This means our online security is at much greater risk. Passwords can be easily guessed, hacked, or phished by cyber criminals and we have seen a marked increase of compromised accounts.   

2FA is essential to web security because it gives you the power to protect your data, even if someone obtains your password. 

Using 2FA is easy. Simply acknowledge a notification on your mobile device or enter a 6-digit code sent via text message.   

What’s next? 

The 2FA project team are working on a rollout strategy for each department. Stay tuned for more details from your unit and communications from IT Announcements

It's never too early to own your digital safety. Enroll now! 

Back to top