Versions Compared

Version Old Version 46 New Version 47
Changes made by

Joshua Drummond

Joshua Drummond

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. OIT Security will send you email with two steps.  It is best to open that email on the device you want to configure to use Duo.
    1. STEP 1: The first links are to download the Duo Mobile application based on the device platform you specified (i.e. Apple AppStore for iOS, Google Play for Android, etc).
    2. STEP 2: Once the Duo Mobile application is installed on your mobile device, the second link is to activate the Duo Mobile app specific to your user and device account or to scan a QR Code if reading email from computer.
  2. You can then test it by going to the test Duo-protected URL webpage below.

Hardware Token Setup

  1. Hardware tokens will need to be picked up from the OIT Security group located on 6th floor Science Library.
  2. Once the hardware token is issued to you, it should be configured and ready to go.  You can then test it by going to the test Duo-protected URL below.webpage below.

Testing Your Token

  1. The following Duo-protected webpage can be used to verify your token is working: https://thea.adcom.uci.edu/DuoSupportDesk/testToken.htm

General Usage Information

  • Duo Guide to Two-Factor Authentication
  • Keep your Duo Security token in a safe place, either with you at all times or somewhere you won't forget it, when you need access to systems from work or home
  • Duo Security requires two factors being authenticated before you are allowed to progress:
    • First Factor = the normal native password you have been using to access the system
    • Second Factor = the Duo Security Passcode or Duo Push Response
      • Example Duo Passcode using hardware token:
      • Example Duo Passcode using Android mobile app: 
      • Example Duo Push using Android mobile app: 
  • A Passcode on a Duo Security token changes every 60 seconds.
  • A Passcode can only be used once. (You must wait until passcode changes before attempting to use the Duo Security token for authentication again.)The following Duo-protected webpage can be used to verify your token is working: https://thea.adcom.uci.edu/DuoSupportDesk/testToken.htm
  • Accounts by policy lockout after 5 failed login attempts
  • If you need your account reactivated after a lockout, or you've lost or forgotten your Duo Security Hardware or Software token, or have any problems related to Duo Security Authentication, please send email to security@uci.edu
  • Duo Security tokens do not communicate to a central server and do not need internet connectivity for standard use. However, if you wish to use the Duo Push feature of the software device token, that does require a data connection of the mobile device.
  • Here is generic information (.pdf) about Two-Factor Authentication via SANS (calling the process two-step verification)

...