Skip to main content


At Cornell, identity management is provided through a suite of mission-critical services that support secure user access to IT services and systems used by the Cornell community. Secure user access means that there is a high level of assurance that the people accessing the service are who they...Read more

The IT Security Office provides the following vulnerability scanning options:

Scan On Demand (Nessus) - NetAdmin access to an easy-to-use, web-based,
feature-rich, and up-to-date general-purpose vulnerability scanner...Read more

Use Cornell's virtual private network (VPN) service when you need to connect to campus resources that would otherwise be unavailable from distant networks, such as file servers and print services. CU VPN provides an added layer of...Read more

Two-Factor Authentication

Two-Step Login adds an extra layer of security for your Cornell NetID and password by requiring:

something you know (your NetID and your password), plus something you have (a physical device, like your phone)

This is called...Read more

The IT Security Office offers no-cost SSL server certificates through the InCommon Digital Certificate service. The service is contracted through Comodo .

What are the benefits of an SSL...Read more
Cornell's Secure Password Management service has been upgraded.

On January 31, 2018, PMP (the product previously used for this service) was replaced with LastPass, which offers better features and usability. We have communicated about this change through a variety of e-lists and targeted...Read more

The NetID is the unique electronic identifier, in which the password permits secure access to non-public Cornell resources and information.

NetIDs are unique and permanent. The same NetID is never reassigned to more than one individual; if you leave the university and return at a later...Read more

The information in this article is intended for technical staff who create, maintain, and support applications that require authentication. Most Cornell faculty, staff, and students do not need this information.

Shibboleth is a higher education community implementation of web single-...Read more

The Managed Firewall service protects the campus networks with a system of distributed firewalls. These firewalls result in an efficient, economical, and flexible system that allows units at Cornell to control their necessary level of protection.

Contemporary threat protection, including...Read more