![]() ![]() Other methods of second factor authenticationĪm I required to enroll in DUO Account Security?Īs of February 2021, all students, faculty and staff are required to enroll in DUOĪccount Security to protect their accounts. Notifications, or generate a one-time passcode. Use the DUO Mobile app to enroll their smartphone or tablet to receive online push The ITS Security team has implemented MFA using a product from DUO Security, whichĪllows users to use their phones as a second factor for authentication. Passwords alone have become increasinglyĮasy to hack and MFA substantially reduces the threat of unauthorized access to accounts. To authenticate in addition to their password. This means that users protect their accounts by requiring a second means The UofM Single Sign-On System (SSO) now includes Multi-factor Authentication (MFA)Ĭapabilities. Something you are (biometric, such as a thumbprint).More) factors needed before gaining access to an account. ![]() A better security option is having two (or ![]() When all is said and done, passwords are simply no longer reliable as the sole method Passwords are reused across multiple systems, making all accounts vulnerable In systems that rely solely on a knowledge-based authentication factor (something Password management has always been a weak point Some types of keys flash as a prompt for you to authenticate.Duo Account Security DUO Account SecurityĬlick here for information about recent Duo updates.Īccount security has never been more important as an increasing number of businessesĪnd users are targeted by hackers. Insert your security key if it's not already connected, and then tap your security key when prompted. If you're using Safari 14.1 or later, click the Initiate authentication button to proceed. Once you select your security key from the list, click Use Security Key. The next time you log on using Duo, select your security key from the drop-down list of your authentication devices. You've added your security key (in this example, a security key from Yubico)! It is listed with your other enrolled devices. Proceed with the security key enrollment process as shown above in Initial Enrollment with a Security Key. Click it and approve the Duo login request using your already enrolled phone or other device. At the Duo Prompt you'll see an Add a new device link on the left. Navigate to your Duo-protected service and log in. If you previously enrolled other devices in Duo, you can easily add your new security key as an additional authenticator as long as your administrator has enabled Duo's self-service portal. You'll see whether the security key identification was successful or not.Ĭongratulations! You have enrolled your security key.Īdding a Security Key From the Duo Prompt You may also be asked if you want to allow Duo to access information about your security key (click Allow or Proceed as applicable). When enrolling your security key, you'll be prompted to tap to enroll your security key (possibly more than once). ![]() The security key enrollment window automatically tries to locate your connected security key for approval.ĭepending on your security key model, you'll need to tap, insert, or press a button on your device to proceed. If you're using Safari 14.1 or later, click the Initiate enrollment button to proceed. Make sure that you're not blocking pop-up windows for the enrollment site before continuing. Select Security Key from the list of devices and then click Continue. Initial Enrollment with a Security KeyĪccess the Duo enrollment page via a link emailed by your administrator, or when you log in for the first time to a Duo protected resource. You can enroll your security key during the initial self-enrollment process or, if you have already enrolled in Duo using a different device (like your mobile phone), you can add your security key as an additional authentication device from the device management portal. Check with your organization's support team or help desk to verify that security keys are allowed if you are uncertain. We do not support U2F-only security keys (like the Yubikey NEO-n).Īdditionally, your administrator must enable the use of security keys in Duo. WebAuthn/FIDO2 security keys from Yubico or Feitian are good options. Support for authentication is limited to web applications that show Duo's inline browser prompt.
0 Comments
Leave a Reply. |