March 12, 2020

On May 30, the commonly used Sectigo (Comodo) Root certificate, named AddTrust External CA Root certificate will expire. 

Applications that rely on the operating system’s list of trusted root certificates and the majority of modern clients should not be impacted. However, some may experience issues connecting to UC Berkeley (and other) websites that are secured by InCommon SSL/TLS certificates. These special cases include:

June 5, 2019

Do you want to allow campus guests to use your application? Now you can easily do so with CalNet Sponsored Guests, the newest service from the CalNet team. Replacing the recently deprecated legacy guest service, CalNet Sponsored Guests allows your guests to use their personal Google account to log into your applications - no more CalNet IDs!

Ready to roll out the welcome mat?

May 31, 2019

Karl Grose, one of the founding fathers of CalNet, is retiring.

April 1, 2019

February 22, 2019

 Starting March 11th services that use Active Directory Federation Services (ADFS) will require CalNet 2-Step Authentication. 

ADFS 2step login screenshot

Examples of software include CalShare and Microsoft 365.

December 10, 2018

We are pleased to announce that the CalNet Team has won the Chancellor’s Outstanding Staff Award (COSA) for implementing the CalNet 2-Step multi-factor authentication system for all employees at the University of California, Berkeley.

COSA awards are given annually, and are awarded based on criteria such as innovation, adaptation, and efficiency, and enhancing Berkeley’s mission and reputation.

August 22, 2018

August 1, 2018

All students are required to sign up for CalNet 2-Step verification by Sept. 24, 2018. 

June 12, 2018

If you attended the One IT Summit held on June 7, 2018 in the MLK Student Center, chances are you stopped by the coolest table in the Exhibit Hall - the CalNet 2-Step table.

May 2, 2018

Change is afoot in the CalNet team!

We are pleased to announce that our long-time manager Jeremy Rosenberg has been promoted to the position of Chief Information Security Officer for UC Berkeley. The recruitment for a new CISO was a long process and we were fortunate to have a number of qualified and capable candidates apply. Jeremy bested them all, and stepped into his new position of CISO effective May 1.

April 18, 2018

March 13, 2018

January 25, 2018

Sign up for CalNet 2-Step, and enter for your chance to win an iPad! Sign up sooner to have more chances to win.

January 15, 2018

Do you travel abroad for work? Have you considered what will happen if you lose your phone or laptop? How will you access your CalNet account using 2-Step if your device is lost or stolen?

Never fear, dear traveler! Just take a few moments to set yourself up for success by doing the following:

  1. Update your Recovery Email Address at

November 16, 2017

Do you have questions about how to set up your smartphone to use CalNet 2-Step? Check our our handy new video! With easy to follow instructions and lots of information, this video will have you using 2-Step in no time. 

Check it out online:

October 11, 2017

Jeremy at CalWe asked Jeremy Rosenberg, Manager of the CalNet Identity and Access Management Team at UC Berkeley, why the CalNet 2-Step is such a big deal. Read on to find out!

What is 2-Step?

September 22, 2017

Berkeley Law FacadeAt Berkeley Law, the IT department has been at the forefront of adopting CalNet 2-Step, a two-step verification system using Duo, that better protects institutional and personal data. Gabriel Gonzalez, Chief Technical Officer at the law school, took a few moments to share his experiences with 2-Step.

June 27, 2017

Shibboleth is an identity provider that uses the CalNet Central Authentication Service (CAS) screen to provide access to services hosted outside the University. While CAS is used directly by onsite services such as CalCentral, Shibboleth was designed for off-site services such as Google, Box, BearBuy, ServiceNow, Zoom, and thousands of other services like wikis and forums.

Shibboleth’s recently released Consent Module adds a layer of user consent to the release of attributes from CalNet to the service you are trying to access.

May 12, 2017

Ever wonder what CalNet is up to?

CalNet maintains a Service Projects board with current and future projects sorted by priority and roughly laid out on a 1, 3 and 5 year timeline. This RoadMap enables the campus community to see what we are working on, to provide feedback, and help prioritize efforts. The board is public and can be viewed at:

March 20, 2017

Due to recent major upgrades of the Identity Management environment, CalNet accounts for former students, employees and affiliates have not been expired since October 4, 2016. Account expiration and the accompanied notifications were turned back on last week. Moving forward, users with accounts that should be expired will start receiving grace notifications by email. Grace period end dates will be set to July, so that sufficient notice can be given to these users.

The CalNet expiration process is as follows: