Duo Security is a multi-factor authentication tool used by the University of Vermont to protect sensitive information. Upon logging into a Duo-protected site, you will be required to perform an additional authentication step via Push notification to a smart phone or tablet, SMS text, or phone call.
To use Duo, you must enroll a device to act as your secondary authentication factor.
See our FAQ for answers to common questions about Multi-Factor Authentication at UVM.
There are five physical devices that you can use to provide the second factor of two-step authentication. Each device has one or more authentication methods available. Expand the toggle below to view all supported devices and authentication methods.
Devices and supported authentication methods
Device Type | Authentication Options | Supported Platforms |
---|---|---|
Smartphone |
|
|
Tablet |
|
|
Mobile Phone |
|
|
Landline |
|
|
Backup Access (Offline) Codes |
|
|
Hardware Token |
|
|
Enroll a device in Duo
Add a Smart Phone
-
Your smartphone needs to be connected to the internet.
- Visit https://account.uvm.edu/multifactor and enter your UVM NetID and password, if prompted.
- Click Activate/Manage Duo Security.
- Click Add Device.
- Select Mobile for the type, choose the appropriate platform, enter your phone number (with area code), enter a nickname for your phone, then click Add Device.
- Visit https://account.uvm.edu/multifactor and enter your UVM NetID and password, if prompted.
- You will receive two sms text messages. The first message contains a link to download and install the Duo app on your device. Follow that link and install the app if you haven’t already installed it.
- If you have not already installed Duo, you can click this link to launch your App Store (iOS) or Google Play store (Android) to install the app.
- Once your device’s App Store (iOS) or Google Play store (Android) has launched, click the “Get” or “Install” button to download and install the Duo Mobile app. The Duo mobile app uses Push notifications. If prompted, you should “Allow Push Notifications” in order to use the Push authentication method.
- If you have not already installed Duo, you can click this link to launch your App Store (iOS) or Google Play store (Android) to install the app.
- When the Duo mobile app installation completes, open the second sms text message you’ve received. This message provides a link which will activate your Duo mobile app for use with your UVM account.
- You should now have successfully activated your Duo mobile app.
Add an iPad or Android Tablet
The following steps will guide you through enrolling your iPad or Android tablet in Duo Security for Push and passcode authentication.
- Your tablet needs to be connected to the Internet.
- Navigate to your tablet’s App Store (iOS) or Google Play Store (Android). Search for the Duo Mobile app and install it on your device. If prompted, you should Allow Push Notifications. When the app is installed, proceed to step 3.
- Visit https://account.uvm.edu/multifactor and enter your UVM NetID and password, if prompted.
- A QR code will appear on the following screen. This code will be used to link your Duo Mobile device with your UVM account.
- You should now have successfully activated your Duo mobile app.
Add a Non-Smart Phone
The following steps will guide you through enrolling your cell phone in Duo Security for SMS authentication.
- Visit https://account.uvm.edu/multifactor and enter your UVM NetID and password, if prompted.
- Click Activate/Manage Duo Security.
- Click Add Device.
- Select Mobile as the type, choose Unknown for platform, enter your phone number (with area code), enter a nickname for your phone, then click Add Device.
- Your phone should now have been properly added to the Duo Security system.
Add a Landline or Office Phone
- Visit https://account.uvm.edu/multifactor and enter your UVM NetID and password, if prompted.
- Click Activate/Manage Duo Security.
- Click Add Device.
- Select Landline as the type, enter your phone number (with area code), your phone extension enter a nickname for your phone, then click Add Device.
- That’s it! You’ve successfully enrolled your Landline phone for use with Duo Security.
Generate Backup Access (Offline) Codes
Off-line passcodes are to be used when you need to provide an additional authentication factor but are unable to use other methods.
- Visit https://account.uvm.edu/multifactor and enter your UVM NetID and password, if prompted.
- Click Activate/Manage Duo Security.
- Click Generate Offline Codes.
- Print out this list of codes and keep it in a safe place. You should treat these codes as if they were a $100 bill. Codes must be used in the order they are listed. Once you’ve used a code it will no longer work, cross out any used codes to help keep track of which have been used.
Request a USB YubiKey
A YubiKey is a small device that resembles a USB flash drive, plugged into the computer you are using to access a Duo protected service. Pressing the button on the key provides the second factor to the service allowing you access.
Re-Enroll in Duo with a New Device or Number
If your UVM account is already protected by Duo, but you get a new phone or number, you will have to remove and re-add your device in the Duo Security Enrollment page. Because this page is protected by Duo, and you may no longer have your Duo device, this section describes how to proceed through some common scenarios
Login using Duo MFA Options
Login using Push Notifications
- Enter your UVM NetID and password as normal, then click Login.
- Click Push to receive a (no-cost) push notification on your device.
- Open the Duo Mobile app on your device, then tap Request Waiting. Tap to Respond… toward the top of the screen.
- Tap Approve. You should be logged into the Duo-protected service after a few moments.
Login with Duo Mobile Generated Codes
Login using Duo SMS Text Messages
Open a web browser and navigate to a UVM web service protected by Duo multi factor authentication. In this example, we’ll be logging into PeopleSoft.
- Enter your UVM NetID and password as normal, then click Login.
- Click Text. You should only need to click this option once.
- You will receive an SMS text message with a list of codes.
- Enter one of the codes into the Passcode field, then press the Enter key.
Login using a Phone Call
Login using Backup Access (Offline) Codes
Login using a USB YubiKey
- Enter your UVM NetID and password as normal, then click Login.
- Insert your YubiKey into a USB-port, then touch the brass contact.
- Your YubiKey will automatically insert a string of characters which will serve as the second-factor for accessing the Duo protected service you’re logging into. You should then be successfully logged in.