What's Changing With Duo Multi-Factor Authentication?
On September 26th, 2023, the university is implementing a new security policy for all university affiliates to strengthen your Duo account against attacks. This change will automatically replace Duo Mobile push with Verified Duo Push.
For more information on these upcoming changes, please visit: Duo Security Enhancement with Verified Push
Duo Help Video from ITS
In the video below, UT’s Information Technology Services (ITS) introduces Duo, a multi-factor authentication service. Duo is used as an extra layer of security to make logins more secure.
To learn more about Duo and how to use it, you can view the videos below. Closed captioning is available via the [CC] button.
What is Multi-Factor Authentication (MFA)?
Authentication is the process by which a system determines that you are who you claim to be.
There are multiple factors of authentication, which can be broken down into categories:
- Something you know, such as a password.
- Something you have, such as your mobile phone.
- Something you are (i.e., biometrics), such as your fingerprint.
When you use more factors of authentication, the system can be more confident that you are who you claim to be, leading to better security.
For example, your password might be comprised when a website gets hacked, but with multi-factor authentication, that password is useless without your mobile phone.
Why am I Being Asked to Complete MFA?
To better protect the security of your online information, the university has implemented MFA using the Duo product. This system will come up when you log into any university web application protected by MFA.
Before you can complete the authentication process, you will need to enroll a device. The recommended device is a smartphone or tablet, such as an iPhone or Android device.
If you have not enrolled a device, please follow the instructions below. You will need your chosen device handy to complete this process.
Available Authentication Methods
Authentication Methods | Description |
Phone Call Approval | Receive a phone call and follow the instructions. |
Duo Verified Push | * Beginning September 26, 2023 - Pushes a request to your phone or tablet. Enter the code shown on your screen into the Duo Push request received on your Android or iOS device. Android users only: tap Verify to finish approving the login request. |
Duo Push | * No longer available September 26, 2023 - Pushes a request to your phone or tablet (if you have the Duo Mobile application installed and activated on your iOS, Android, or Windows Phone device). Just review the request and tap Approve. |
Security Key |
Authenticate with a touch of a button (no passcode needed). The generic term is "security key" and one example is the YubiKey, a product made by YubiCo. Security keys configured for the university's MFA service can be purchased at the Campus Computer Store.
Security keys sold by the Campus Computer Store are configured for the university's MFA service and are incompatible with the YubiCloud OTP validation infrastructure. |
Duo Mobile Generated Passcodes | Enter a passcode generated with the Duo Mobile application or generated by your hardware token. Click 'Enter a Passcode' to make use of this functionality. |
Hardware Token |
Authenticate with a one-time passcode generated from a portable hardware token. The generic term is "hard token" or "token".
Hardware Tokens configured for the university's MFA service can be purchased at the Campus Computer Store under product ID#1867833 |
Touch ID |
In order to use Apple Touch ID, make sure you have the following:
A MacBook Pro or MacBook Air with a Touch ID button.
|
Registering Backup Devices
The university strongly recommends that you register more than one device.
- In the event that your primary device is lost/stolen/broken, you can use your backup device to remove the lost/stolen/broken device and add a new one.
- In the event that your smartphone or tablet is reset to factory settings, you can use your backup device to remove and re-add that smartphone or tablet.
- If you do not configure a backup device, you will need to contact the UT Service Desk if your only device becomes lost, stolen, broken, or reset.
- For directions to add a backup device, please visit: Device Management
Registration Steps for New Users
The first step in registration is to enroll your device using your UT EID. The device you enroll will be used when you are prompted to authenticate by university web applications protected by MFA.
Follow the instructions below to register your mobile phone or landline.
1. Click here to go to the Self-Registration Portal.
2. Sign on with your UT EID and EID password.
3. You will then be automatically redirected to the setup. Select "Next" to start setup.
4. After a few data safety tips, you will be prompted to select a Duo option to use for authentication. "Duo Mobile," which utilizes the Duo app, is recommended.
5. Select the correct Country Code and input your number. Once done, select "Add phone number". On the next page, verify that it is correct, and click "Yes, it's correct"
6. If you chose the "Phone Number" method, you are all set up and ready to go. If you chose "Duo Mobile," navigate to your device's App Store and install the Duo Mobile app and select "next"
7. Select "+Add" in your Duo app to scan the QR code that appears. Once scanned, a confirmation screen will appear, letting you know your device is set up.
8. Once you continue, the setup is now complete.
Registering Other Devices
For help registering other devices with Duo, please visit our Device Management article in the link below:
Note: Do not use the comments box below to request technical support. Please contact the UT Service Desk for assistance at 512-475-9400 or help@utexas.edu.