What is Duo?
Duo is a Single Sign-On (SSO) service that secures most campus resources, including Gmail, Box, Canvas, and Panopto. It also prevents users from having to log in to multiple applications. If a user logs into one Duo application and opens another tab in the same browser for an application that also uses Duo, they will not have to enter their credentials again.
Duo Login Screen:
What is Two Factor Authentication?
Duo allows us to implement a feature called “Two Factor Authentication” (2FA), a method of confirming a user’s claimed identity by utilizing a combination of two different factors. Enabling 2FA helps ensure that if a malicious actor manages to steal our password, they are still unable to log in without something physical (a phone, for example).
How To Use Two Factor Authentication
A second authentication factor could be a text message/phone call that provides you a code to enter, a push notification sent your smartphone that needs to be approved, a physical device that provides a code that changes every X amount of time, and many other forms. Duo allows users to receive a text or phone call with a code or select “Accept” on a push notification from the Duo smartphone app.
Duo push notification:
Frequently Asked Questions:
- What if I don't have cell phone reception?
We highly recommend users setup using a push notification on their cell phone instead of a text message. Push notifications can be sent via the Internet rather than via cell phone networks. If you are in an area that has internet access but not cell signal, and the only second factor you have configured is a text message or phone call, you may be unable to receive a text or phone call to authenticate.
- Can I register multiple devices?
Yes! In fact, we recommend that users add multiple devices when they are first setting up two factor authentication. For example, if you setup your cellphone as well as your office phone, if your cellphone gets lost, broken, or runs out of battery, you can still authenticate by using your secondary device.
- What applications use two factor authentication?
Currently, only Box uses two factor authentication, but on May 14th, we will enable it for Gmail and in the coming year, Banner SSB and other enterprise apps.
Please visit our article on logging into Box with Duo here: Logging Into Box