Duo Security Two-Step Login

Two-Step Login is used to protect your account, even if your password is stolen. 


What is the Purpose of Two-Step Login?


2-Step Login

After entering your password into a system (step 1) that is protected by Duo, you will be prompted to approve the login using another device (step 2).



Two-Step Login adds an extra layer of security.  Even if someone has your password, they will not be able to get into a system that requires Duo.   No one can get into the system unless the login is approved.



Protected Systems

Duo will challenge users during the login process if they are registered Duo-user and the service is protected by Duo. 

Duo Protected Systems

RDP Gateway Connections
Stony Brook's VPN
Citrix VPN 
LastPass Enterprise
Single Sign-On
Virtual SINC Site

Activating Duo Mobile

The recommended method is to setup up Duo Mobile on a smart phone to receive push notifications.  A push notification is a message that pops up on your smart phone and allows you to approve the login and finish the authentication process into a protected system, or deny the login if you suspect it is fraudulent.

 Watch this video and learn how easy it is to setup Duo Mobile. 


Frequently Asked Questions

Can I use Duo Mobile without a network connection?

Yes, Duo Mobile can generate passcodes locally, without requiring network connectivity.

Using a Duo App Passcode for Two-step Login When Your Device Does Not Have Internet or Cell Service

Does Duo Mobile work in China?

Yes, Duo does work in China. Apple devices will work without issue, whereas for Android devices the app will need to be installed directly from Duo's website. More info is available here.

Additional Information

Files & Links

Please Contact

Customer Engagement and Support