...
- Duo Guide to Two-Factor Authentication
- Keep your Duo Security token in a safe place, either with you at all times or somewhere you won't forget it, when you need access to systems from work or home
- Duo Security requires two factors being authenticated before you are allowed to progress:
- First Factor = the normal native password you have been using to access the system
- Second Factor = the Duo Security Passcode or Duo Push Response
- Example Duo Passcode using hardware token:
- Example Duo Passcode using Android mobile app:
- Example Duo Push using Android mobile app:
- Example Duo Passcode using hardware token:
- A Passcode on a Duo Security token changes every 60 seconds.
- A Passcode can only be used once. (You must wait until passcode changes before attempting to use the Duo Security token for authentication again.)
- The following Duo-protected URL webpage can be used to verify your token is working: https://secw2k3testthea.adcom.uci.edu/DuoWebTestDuoSupportDesk/testToken.htm
- Accounts by policy lockout after 5 failed login attempts
- If you need your account reactivated after a lockout, or you've lost or forgotten your Duo Security Hardware or Software token, or have any problems related to Duo Security Authentication, please send email to security@uci.edu
- Duo Security tokens do not communicate to a central server and do not need internet connectivity for standard use. However, if you wish to use the Duo Push feature of the software device token, that does require a data connection of the mobile device.
- Here is generic information (.pdf) about Two-Factor Authentication via SANS (calling the process two-step verification)
...