Skip to main content

Cornell University

IT@Cornell

Content (40)

Zoom to Notify Meeting Hosts When Meeting Security Puts Them “At Risk”
Going forward, Zoom meeting owners (hosts) will receive an email notification when Zoom judges their meeting’s security has put it “at risk” for intrusion or disruption ("Zoombombing") by uninvited or unwanted participants.How Does Zoom Decide If a Meeting Is At Risk?When Zoom determines a meeting…
Final Reminder: On Feb. 25, Cornell Implements Full DMARC Enforcement to Reduce Email Fraud
On Wednesday, February 25, 2026, at the direction of IT leadership, Cornell will complete its accelerated enforcement of DMARC ("Domain-based Message Authentication, Reporting, and Conformance") policies. After the implementation, all email messages from “@cornell.edu” addresses that fail…
Teamwork Helps Safeguard University Systems
For over a decade, Tim Bradish has helped shield and strengthen Cornell services and systems against attack. In a spotlight story on the Human Resources (HR) home page, the associate chief information security officer attributed his team’s success to their interest in working with each other and…
Upcoming Minor Change to CUWebLogin (Shibboleth) Login Process, Starting November 26, 2023
Starting Sunday, November 26, 2023, Cornell users will see a minor change when they log into Cornell IT services using the CUWebLogin webpage. By default, the Remember My Username checkbox will be checked and the current browser instance will auto-fill the user’s Cornell NetID in the Username (…
CIT to Begin DMARC-based Email Security Initiative
Beginning this summer, CIT will launch an initiative to significantly improve email security at Cornell by implementing Domain-based Message Authentication, Reporting, and Conformance ("DMARC") at Cornell. Cornell users who send bulk emails (such as, but not limited to, e-newsletters or…
Manage Passwords Safely
Keeping your personal information, Cornell sign-in credentials, and important data safe means protecting your passwords. Anyone with active online accounts encounters dozens of passwords used to access Cornell resources, personal online banking, e-commerce sites, and other websites. Below you will…
Log In Using a USB Security Key for Two-Step Login
CUVPN does not support the USB key for Duo authentication.
Remove a Device from Two-Step Login
Go to the Device Management Portal To add a new device to Two-Step Login, begin one of two ways. Either: Go to the Device Management portal using one of the following methods. Either:
Replace Your Smartphone Listed in Two-Step Login
When you get a new smartphone, there are a few steps you need to take to set up the phone you're using for your Two-Step Login account. The exact steps depend on whether you kept your phone number or if you have a new number on your new smartphone.
Rename a Device Enrolled for Two-Step Login
Go to the Device Management Portal To add a new device to Two-Step Login, begin one of two ways. Either: Go to the Device Management portal using one of the following methods. Either:
Add a New Device to Two-Step Login
Log Into the Device Management PortalTo add a device, you need to access the management portal. 
Log in with Append Mode or Second Password Authentication for Two-Step Login
Use Append Mode Authentication Some campus IT services, such as Desktop Everywhere using the VMware Horizon View client, do not support a web interface to specify how to complete the second step of authentication.  If you enter just your NetID and password with these non-web apps, Two-Step…
Log in with a Passcode for Two-Step Login
Get a Passcode from a Hardware TokenAcquire and enroll a hardware token that will display a passcode with a simple button push.
Log in Using a Phone Callback for Two-Step Login
During late Fall 2025 and early Spring 2026, Cornell will begin disabling the Duo Phone Call and Duo SMS Passcode methods. 
What to do if your SSL Certificate is Compromised
What do I do if my certificate is compromised? Important: Contact the IT Service Desk  to revoke a certificate if: The server is compromised. The private key is compromised or lost. Your passphrase is compromised or lost.
Five Reasons You Want Two-Step Login
Why Two-Step Login? NetID passwords belonging to Cornell community members are stolen, guessed, or hacked daily. Two-Step Login means a thief would also need to have your device in order to do anything with your password. Typically, by the time a password theft is detected or reported,…
Expand Where You Use Two-Step Login
If you don't see the Expand Where You Use Two-Step Login tab described below, then you are required to use Two-Step Login with any service where you log in with CUWebLogin and cannot opt out of this expanded use of Two-Step Login.  Expand Your Use of Two-Step Login To better protect…
Hardware Tokens for Two-Step Login
About Hardware TokensA hardware token is a keyfob-like device where you press a button to generate a one-time passcode for use in the second step of logging in. Hardware tokens are an option for situations where using a landline, cell phone, or other mobile device with Two-Step Login is not…
Get Started with Two-Step Login: Quick Guide
First Time Setup for Two-Step LoginOptional: This is a "Quick Start" guide.
Zoom Security Features: Reduce the Odds of Zoombombing
Other articles with tips to help you protect meetings and courses:

At Cornell we value your privacy. To view
our university's privacy practices, including
information use and third parties, visit University Privacy.