As part of our ongoing efforts to protect UCSF from cybersecurity risks, on Monday, May 12, 2025, phone call (callback) and SMS text will no longer be available for Duo multi-factor authentication (MFA).  

This means that if you use these methods to authenticate to UCSF systems you must transition to one of the approved multi-factor authentication methods in Duo:

• Duo Push
• Duo Passcode
• Token

NOTE: If you are already using the Duo mobile app, this change will not apply to you.

To ensure you can use Duo MFA to authenticate and access UCSF resources, you will need to have the Duo mobile application installed to an iOS or Android smartphone. If you do not already have the Duo mobile app, please follow these instructions:

• Download and install the Duo mobile app, Version 4.55.0 or later
• Ensure your smartphone operating system is:
  • iOS: Version 14 or later
  • Android: Version 12 or later

Alternatively, if you do not have currently have a smartphone, you can request a token to authenticate to UCSF systems. Tokens are easy to use and will provide you with a passcode to enter for verification. See these token usage instructions.

Tokens will be available for pick up at the following locations from Monday, April 28 through Friday, May 16, 11 a.m. to 1 p.m. at the following locations:

St. Francis

• Room 1204

St. Mary's

• Gift Shop

Mission Bay

• IT Health Desk
• 480 Illinois St. (Lobby entrance at 16th & 3rd Streets)
  San Francisco, CA 94158

Parnassus

• IT Health Desk
• The Library Tech Commons Library, Room CL-240
  530 Parnassus Ave., San Francisco, CA 94143

If you are unable to pick up a token at one of these locations, please request a token here.  

‌‌For questions regarding this change, please email Jason Gabler, Manager - Identity and Access Management, or Kevin Dale, Director - Identity and Access Management.