As of October 27th, 2024, the U.S. National Science Foundation (NSF) requires all users to utilize a MFA method to access Research.gov. This implementation is part of an ongoing commitment to enhancing security and safeguarding NSF’s IT systems, user accounts, personal and scientific data, and the integrity of the merit review process. NSF urges users to also set up a secondary MFA method in case their primary MFA method is unavailable (e.g., the user does not have their mobile device with them).

There are two primary options to log in to Research.gov:

  • Logging in with your Research.gov account – This option requires you to confirm your email before proceeding with MFA enrollment. After confirming your email, please refer to the security method guides posted on the new About Signing into Research.gov page. The Passkey option seems to be the most straightforward option at the moment, and NSF has posted a PDF and video guide for setting up a passkey. Note that other login options (fingerprint/facial recognition/security key) are options as well, and NSF has provided guides for each of these methods if they are options available to you or your device.
  • Logging in with Login.gov – If you go directly to login.gov, you can add a passkey using the “Add face or touch unlock” option under “Your authentication methods.” You can set up a passkey here using the Windows Hello PIN system, or by generating a passkey in your password manager if you use one. Note that users can also log in to login.gov on their phones to set up fingerprint/facial recognition passkeys there).

If you’d like to update your MFA security method, refer to the “MFA Security Method Management” section of the About Signing into Research.gov page. Note that you must log in to update your passkeys or authentication method. Since some passkeys are stored locally on individual devices, users should take caution when changing devices and might need to retain the old device long enough to switch authentication to the new device before wiping or disposing of the old device.

To access Research.gov after October 27th, SPA is encouraging users to set up and utilize a Login.gov account bolstered with biometric such as Face ID or Touch ID authentication. If you do not have access to a device capable of biometric authentication, you can procure a security key that meets the FIDO (Fast Identity Online) standards.

Please note: The passkey is tied to the device you set it up on not to the MFA authenticator of your choice. So, if you use multiple machines, you will need to set up multiple passkeys.