Skip to content Skip to site navigation Skip to service navigation

Login and Two-Step Authentication FAQ

Logging in

I forgot my password. How can I log in?
Go to the Stanford University Accounts webpage  and click the Forgot password? button, then follow the steps to reset your password.
What is the status of SPNEGO?
SPNEGO via web single sign-on is no longer supported. When login changed on March 30, 2018, the Identity and Access Management team wanted to simplify login options. Because there are very few active daily users of SPNEGO, the team removed the Advanced Settings option from the new Stanford Login page. This change reduced confusion among the majority of users who do not use SPNEGO.

Using two-step authentication devices and methods

What is the recommended two-step authentication method?
If you can authenticate with a smartphone or tablet, Duo Push is the recommended method; it is quick, simple, and secure. Watch a quick tutorial on how to use Duo Push.
How can I use two-step authentication without a smartphone?
Authentication with a hardware token does not require an internet connection, cellular connection, or device. Tokens are available from the Stanford ID Card office in Tresidder Union.

You can also authenticate by a  call to a mobile phone or a call to a landline.

My device does not have an internet or cellular connection when I travel. How can I use two-step authentication?
You can authenticate with the Duo Mobile app passcode, which requires a device but does not require an internet or cellular connection.

If you do not want to put the Duo Mobile app on your device and do not have a cellular connection, you can authenticate with a hardware token. Tokens are available from the Stanford ID Card office in Tresidder Union.

My default two-step authentication device has changed. How do I reset it?
The Device drop-down menu in the new two-step authentication screen might not list your default device first. You can change your default device on March 30 or later. Follow these steps:
  1. Go to the Stanford Accounts page, choose Manage, and choose the Two-Step tab.
  2. Click My Settings & Devices to open that screen. Note that you will be prompted to re-authenticate with two-step authentication.
  3. When the My Settings & Devices screen appears, click the Default Device drop-down menu to select a default device, then click the Save button.
    Image of my settings and devices screen.
How do I change my default two-step authentication device?
To change your default device on March 30 or later, follow these steps:
  1. Go to the Stanford Accounts page, choose Manage, and choose the Two-Step tab.
  2. Click My Settings & Devices to open that screen. Note that you will be prompted to re-authenticate with two-step authentication.
  3. When the My Settings & Devices screen appears, click the Default Device drop-down menu to select a default device, then click the Save button.
    Image of my settings and devices screen.
How do I get a hardware token for two-step authentication?
Hardware tokens are available from the Stanford ID Card office in Tresidder Union.
Can I use a printed list to authenticate?
As of March 30, 2018, you can no longer request a printed list for two-step authentication.

If you use a printed list for two-step authentication, choose one of these simple and reliable alternatives:

  • If you need to authenticate without an internet connection, cellular connection, and/or a mobile device:
  • If you can authenticate with a smartphone or tablet, Duo Push is the recommended method; it is quick, simple, and secure.
Can I use SMS (text message) to authenticate?
University IT does not recommend using SMS for two-step authentication, because the National Institute of Standards and Technology (NIST) has reported that SMS authentication is less secure than other two-step authentication options. If you authenticate using SMS, consider changing to Duo Push. This recommended method is quick, simple, and secure. You can review other ways to authenticate on the Two-Step Authentication website.

Troubleshooting two-step authentication

I lost my two-step authentication device and don't have access to a backup device. How can I use two-step authentication?
You can generate a one-time bypass code on the Stanford University Accounts webpage using your University ID card and the answer to your password reset question.
I'm setting up a two-step authentication device but I want to cancel the setup. How do I cancel it?
It is a known Duo bug that there is no option to cancel the device setup process. We have reported this to Duo. As a workaround,  you can close the browser window and navigate back to the site to stop the setup process.
Why was I asked to do two-step authentication twice?
Because your application is on the legacy infrastructure, it is asking for a reauthentication. Learn how to fix or work around this issue.
My two-step authentication content does not load. What should I do?
If the two-step authentication content does not load, try disabling your ad blocker or third-party browser extensions.
My browser does not auto-fill the login address. What should I do?
If your browser doesn't auto-fill, it may be because you use a password manager. Login.stanford.edu uses a new URL so you need to re-enter your username and password in the password manager.
Last modified June 25, 2018