Q: When will Duo be an offered service?
A: ITS is tentatively looking to offer Duo to Davidson employees in the spring, as early as January, if everything runs smoothly.
Q: What is it?
A: Duo Two-Factor Authentication requires, upon authentication, something you know (a password) and something you have (a mobile phone or hardware token/fob). Here is some information from Duo if you would like to learn more: https://guide.duo.com/
Q: Who can use it?
A: We are offering Duo Two-Factor Authentication to all Davidson employees. A number of employees will be required to use two-factor authentication if they handle information protected by federal regulation or Davidson policy. The rest of the employees can sign up for two-factor authentication on an opt-in basis.
Q: What are the ways I can authenticate?
A: We are still deciding on the requirements for opt-in users, but for required users, you can use:
- Duo Push – if you use your mobile phone, you can install the Duo Mobile app and send a notification to your device. To authenticate, you would choose to “Accept” or “Deny” the request.
- Duo Mobile Passcode – if you use your mobile phone, you can install the Duo Mobile app and generate a temporary passcode from that app. This works even if you don’t have access to WIFI or phone service.
- Hardware Token Authentication – we haven’t yet decided on the best hardware token to use, but you can either generate a temporary passcode on the token or insert the token, like a USB, and tap it to authenticate.
Q: Which services will be protected by Duo?
A: We have yet to establish an official list of applications protected. However, we plan to protect most of the applications that offer SSO (single sign-on), like Zoom, OrgSync, Slate, Maxient, Google Docs, etc. We are hoping to include more confidential applications like Banner and Blackbaud in that list in the future.
Q: How can I opt-in?
A: Visit security.its.davidson.edu/duo-opt-in/ to opt-in. We will contact you when we are ready to offer the service.