DUO Security Two-Step Login

Two-Step Login is used to protect your account, even if your password is stolen. 

What is the Purpose of Two-Step Login?


After entering your password into a system
(step 1) that is protected by DUO, it will ask you to authenticate using a device such as a mobile phone or landline (step 2).


Two-Step Login can be used to protect any type of account. 

Protected Systems

Duo will challenge users during the login process if they are defined as a DUO user and the service is protected by DUO. 

DUO Protected Systems (as of June 2017)

RDP Gateway Connections
Stony Brook's VPN
Citrix VPN 

Using Two-Step Login

Managing Your Devices

Once you have enrolled into Duo, you can add, remove or switch default devices using the Duo Self-Service portal. Make sure you have at least two devices registered in case your default device becomes unavailable.

Default Devices in Duo

Important Note

When you log into a system that requires two-step login, your default device in Duo Security will ring, send a text or a push notification for you to approve the login finishing authentication process.  

If you do not have this default device available,  you will not be able to log in.  

To ensure that you have a default device in hand or to switch default devices go to Add or Manage Devices.

Activating DUO Mobile

The recommended method is to setup up Duo mobile on a smart phone to receive push notifications.  A push notification is a message that pops up on your smart phone and allows you to approve the login and finish the authentication process into a protected system.

 Watch this video to learn how easy it is to setup Duo Mobile. 


Frequently Asked Questions

How do I request a DUO account?

Create a ticket at service.stonybrook.edu/portal or call the service desk at 631-632-9800.

Additional Information

There are no additional resources available for this service.

Please Contact

Customer Engagement and Support