Division of Information Technology

Duo Security Two-Step Login

Two-Step Login is used to protect your account, even if your password is stolen. 


    Announcement - 3/1/2021:   Register Now: Duo Security Two-Step required for all Faculty/Staff

 

Enroll Duo Devices Manage Duo Devices Request Duo Account

What is the Purpose of Two-Step Login?

Authentication

After entering your password into a system (step 1) that is protected by Duo, you will be prompted to authenticate using a mobile device or landline office phone (step 2).

Sign Up for your DUO Account using this
Request Form.

Protection

Two-Step Login adds an extra layer of security.  Even if someone has your password, they will not be able to get into a system that requires Duo.   No one can get in to the system unless the log in is approved  through your default device.

 

 

Protected Systems

Duo will challenge users during the login process if they are defined as a Duo user and the service is protected by Duo. 

Duo Protected Systems

RDP Gateway Connections
Stony Brook's VPN
Citrix VPN 
SeaWulf
LastPass Enterprise
Single Sign-On
Virtual SINC Site

Using Two-Step Login

Managing Your Devices

Once you have enrolled into Duo, you can add, remove or switch default devices using the Duo Self-Service portal or on the NetID SSO  screen. Make sure you have at least two devices registered in case your default device becomes unavailable.

Manage Duo Devices

Default Devices in Duo

Important Note

When you log into a system that requires Duo but that is not using NetID SSO, your default device in Duo Security prompt you for approval (you won't get to choose a device here) to finish authentication process.  

If you do not have this default device available,  you will not be able to log in.  

You can update your "default" device  by clicking Manage Duo Devices

Manage Duo Devices
Tip: You can save your DUO authentication in your personal device for 7 days so you don't need to DUO authenticate as frequently. 

Activating Duo Mobile

The recommended method is to setup up Duo Mobile on a smart phone to receive push notifications.  A push notification is a message that pops up on your smart phone and allows you to approve the login and finish the authentication process into a protected system, or deny the login if you suspect it is fraudulent.

 Watch this video and learn how easy it is to setup Duo Mobile. 

 

Frequently Asked Questions

How do I request a DUO account?

Request an account online 

Can I use Duo Mobile without a network connection?

Yes, Duo Mobile can generate passcodes locally, without requiring network connectivity.

Does Duo Mobile work in China?

Yes, Duo does work in China. Apple devices will work without issue, whereas for Android devices the app will need to be installed directly from Duo's website. More info is available here.

Additional Information

Files & Links

Duo Security guide

Getting Help

The Division of Information Technology provides support on all of our services. If you require assistance please submit a support ticket through the IT Service Management system.

Submit A Quick Ticket

Please Contact

Customer Engagement and Support