Duo Secure Methods
The most secure and convenient way to use Duo!
Avoid using SMS/phone due to security risks and inconvenience (you may be required to occasionally request temporary codes from TigerTech).
- Using PassKeys with Password Managers:
With popular password managers like Bitwarden, 1Password, or LastPass, you can create digital IDs called "PassKeys" that replace traditional passwords.
These PassKeys are securely stored in your password manager and accessible on all devices and browsers where it's used.
When prompted by Duo, simply click "Continue" - no additional steps required!
We highly recommend PassKeys for their convenience and added security. Just remember to enroll other methods in Duo for when your password manager isn’t available.
- Duo on Mobile Devices
When you install Duo's mobile app, your device becomes both the approver and the second form of identification. When logging in, the app will send you a push notification. You tap approve, and you’re in!
If Duo requires a second factor, the app will generate a 6-digit code to enter after approval.
- FIDO2 Security Keys
Get a FIDO2-compatible security key (like Yubikey or Thetis) and log in from anywhere without the second form of identification.
These keys are portable and must be present to access your account, making them highly secure and convenient. You can find affordable options online starting at around $15.
What triggers the request for 2nd form of verification?
- User marked fraud: A user has indicated they weren’t responsible for a login by marking it as suspicious in the Duo Mobile app.
- Push harassment: An adversary sends multiple push attempts to a device.
- Failed Logins: Multiple failed or ignored login attempts.
- Unrealistic travel: A user attempts to authenticate from a new location that would be impossible to reach based on the past authentication time and location.
- VPN: The authentication device and access device appear to be in two different countries.
- Different ISP: A user attempts to authenticate from an ISP not seen in the recent history for FHSU.
- Device distance: The authentication device and access device are abnormally far apart.