Learn more about Duo two-factor authentication, a service T&I is providing to Davidson employees in spring 2018.
Q: What is it?
A: Duo Two-Factor Authentication requires, upon authentication, something you know (a password) and something you have (a mobile phone or hardware token/fob). Here is some information from Duo if you would like to learn more: https://guide.duo.com/
Q: When will Duo be an offered service?
A: T&I is tentatively looking to offer Duo to Davidson employees in the spring.
Q: Who can use it?
A: We are offering Duo to all Davidson employees. A number of employees will be required to use two-factor authentication if they handle information protected by federal regulation or Davidson policy. Other employees can sign up for two-factor authentication on an opt-in basis.
Q: What are the ways I can authenticate?
A: You can use:
- Duo Push – if you use your mobile phone, you can install the Duo Mobile app and send a notification to your device. To authenticate, you would choose to “Accept” or “Deny” the request.
- Duo Mobile Passcode – if you use your mobile phone, you can install the Duo Mobile app and generate a temporary passcode from that app. This works even if you don’t have access to WIFI or phone service.
- Hardware Token Authentication – if you have a hardware token already (ex: Yubikey), you can insert the token, like a USB, and tap it to authenticate (supported browsers: Chrome and Opera). We can also provide you with a Duo token, which will generate a temporary passcode.
Q: Which services will be protected by Duo?
A: We have yet to establish an official list of applications protected. However, we plan to protect most of the applications that offer SSO (single sign-on), like Zoom, OrgSync, Slate, Maxient, Google Docs, etc. We are hoping to include more confidential applications like Banner 9 and Blackbaud in that list in the future.
Q: How can I opt-in?
A: Visit security.its.davidson.edu/duo-opt-in/ to opt-in. We will contact you when we are ready to offer the service.