In 2019 we began Lehigh’s Two-factor Authentication (2FA) program to protect our community against identity attacks. The program has been highly successful but we are starting to see a rise in account compromises and so we will be elevating our security measures.

First, only respond to a Duo prompt, text message or phone call when you are actively logging into a Lehigh service that requires Duo. If you did not initiate a login attempt then immediately “Deny” and report the activity as suspicious, either in the Duo app or by emailing security@lehigh.edu.

Second, beginning Wednesday, May 17, the Duo system will automatically look for elevated risk situations (for example, if someone is trying to log in from overseas and your phone is in Bethlehem). If an elevated risk is detected when you attempt to login, the browser on your computer will display a three-digit code. If that happens, simply enter the same three-digit code into your Duo app to complete the login process.

If you have any questions, please contact the LTS Help Desk at (610) 758-4357 or email helpdesk@lehigh.edu.

Eric Zematis, CISSP, CISM, PMP
Chief Information Security Officer