Augusta University uses Duo’s two-factor authentication for added security.
Two-factor authentication requires something you know (your AU NetID password) and something you have (like a mobile phone, tablet, or a smartphone app) to verify your identity, providing a second layer of security to your account.
Passwords are essential for security and privacy, but they are often not enough. They can be stolen, guessed, or hacked. With Duo, even if someone else knows your password, you will be alerted right away (via your mobile phone or tablet), preventing anyone, but you, from accessing your account.
Duo is required when accessing AU systems, applications, and devices.
The Cyber Defense Team works diligently to ensure Augusta University complies with USG and federal guidelines to protect our enterprise from unauthorized access. Duo, our multifactor authentication vendor, will begin blocking authentication from users attempting to access an IP address originating within a country or region subject to economic and trade sanctions enforced by the U.S. Office of Foreign Assets Control (OFAC).
Beginning Friday, April 15th, Duo will block the following regions:
Following on Thursday, May 5th, Duo will block the following countries:
This change will roll out as part of Duo's regular release process. Web-based applications will display the following error message: "Access denied. Duo Security does not provide services in your current location." Other applications may show a generic failed login message.
AU Cyber Defense Team
Duo's self-enrollment process makes it easy to register your phone, or tablet, and install the application on your device. For instructions on how to register for Duo and set up the Duo app.
With Duo, there are several different authentication methods you can use to verify yourself - they include push, passcode, or using alternative authentication, such as a token, if you don’t have a mobile device. Find out more to see which method will work best for you.
Duo Push is an authentication request you’ll receive as a notification on your smartphone. Overall, it’s quicker, easier, more secure.
Authenticating with a passcode requires receiving a text, reading a passcode, and then typing it in. Using a passcode is appropriate if you are traveling internationally or if you are going somewhere that has no cell service, IT Help Desk can also send you a passcode.
If you are unable to download Duo Push to a mobile device, there are other options that may work for you. You can use a tablet with Duo installed or a small device, called a U2F Token (such as YubiKey or Feitian).
Note: Yubikeys will work with certain AU systems, but not all of them.
Does Duo work internationally?
Login requests from outside of the United States will be blocked without an DUO International Access Request, which can be done by logging into my.augusta.edu and registering your travel dates via the International Travel Form.
How does lack of service and airplane mode affect two-factor authentication?
If you travel internationally or while your mobile device is on Airplane Mode and need access to resources protected by Duo, you may wish to setup your two-step verification method to passcode. Using Duo Mobile Passcode (available for smartphone or tablet), you can generate authentication codes even if you don't have an internet, wi-fi, or cellular connection.
Please note that if you are traveling internationally (or have an international phone number) and are using text messages as your method of two-step verification, you may be subject to your carrier's roaming charges for SMS messages. Use of SMS is not recommended for international travelers.
What about my privacy with the Duo mobile app?
AU IT aims to be 100% transparent regarding what information is captured and visible. The sole purpose of installing the Duo Mobile App is to provide a second method of authentication for AU Systems. The application does collect other information with the intent to provide assurance that your mobile devices are safe and secure.
AU may use this data in the event of a cyber-security incident to assist in validating whether the phone was a reliable and trustworthy second method of authentication.
In general, the only personal data that Duo Mobile knows about you are the service accounts that you explicitly add to Duo Mobile. However, Duo does not track any personal data about these accounts--only the name of the service. The Duo Mobile application will also ask you whether you wish to share application usage information with the creator of the DUO product. This is optional to allow or deny.
For additional information privacy concerns please review: What data does Duo collect?
Does installing Duo Mobile app give up control of my device?
No. Duo Mobile cannot read your emails or track your location, it cannot see your browser history, and it requires your permission to send you notifications. Lastly, Duo Mobile cannot remotely wipe your phone.
Will Duo ask for my password?
Duo will never ask for your user ID and password. If you receive such a request, do not respond.
Why does the Duo Mobile app need access to my camera?
Duo Mobile only accesses your camera when scanning the QR code during activation.
Can I opt out of Duo?
No. Two-factor authentication adds a second layer of security to our online accounts. In an effort to keep your personal account information secure, we are requiring two-factor authentication on selected services.
What if I get a new mobile phone or wipe my existing phone?
What happens if my mobile phone gets lost/stolen?
Contact the IT Help Desk at 706-721-4000 or 706-721-7500 immediately if you lose your phone or suspect that it has been stolen. The device will be disabled for authentication and you will be assisted in enrolling another phone/device. While it is important that you contact the help desk, if you lose your phone, remember that your password will still protect your account.
What if I only have one device registered on Duo and it's not available to access my account?
We recommend that you have two devices registered with Duo in case one device is unavailable. In the event that you cannot access your account due to your device(s) being unavailable, please contact the Help Desk at 706-721-4000 or 706-721-7500 for a temporary bypass code to allow access to your accounts.
How do I enroll more than one device in Duo?
It is important to enroll more than one device in Duo to avoid difficulties authenticating if you lose or do not have your only enrolled device with you. To add multiple devices:
Log into duo.augusta.edu and authenticate with your current device.
On the "Manage Devices" tab, under your current device there should be a plus symbol that says "Add Another Device".
Once you have another device enrolled, you should now see a drop down under menu that says "Default Device". If you have your settings to automatically send you a push, the device you select here will be the one it will go to. If you use devices interchangeably, it is best to set your "When I log in" preference to "Ask me to choose an authentication method". Then when you log in to a system that requires Duo, you will see a dropdown to choose which device to authenticate with, so you will be able to choose the appropriate device, and then click push or passcode depending on your preferred method of authentication.
What if I already have Duo Mobile for another school?
You can have multiple accounts registered to the same Duo app without any problems. See instructions on how to register for Duo with an existing account.
What if I don’t have a mobile phone?
You can use a tablet or U2F Token device. Duo also lets you link multiple devices to your account, so you can use your mobile phone or a tablet with the Duo app installed. In fact, we suggest that you enroll more than one device in the event a device is lost.
Am I required to authenticate every time I log in?
YES. DUO is required at log-in for all AU Windows devices. To avoid having to authenticate every time, you can select the "Remember Me" function to remember your device for 7 days. This option should only be used on individual devices and never on a shared or public computer.
How many chances will I get to authenticate?
You will have five chances to authenticate a request. After the fifth chance, your two-factor authentication will be deactivated and you will not be able to access the system you are attempting to log into.
Why do I have a “Locked out” message for my account?
Your account will lock when there are too many failed attempts to authenticate. The lockout should clear automatically in 15 minutes, so you can either wait, or contact the Help Desk at 706-721-4000 or 706-721-7500 for assistance with your account.
What should I do if I get an authentication message and I am not trying to log in?
How does Duo work with my AU email?
Accessing AU email while on campus will not require Duo. When off campus, you will be required to authenticate with Duo.
Does Duo work with texts?
Yes. To receive a passcode to your phone in a text message, you should choose the "Enter a Passcode" option when authenticating, and a blue bar across the bottom should give you the option to text a code. If you choose to receive text codes, you will be sent one message with 10 different codes. The codes are a one-time use each. This way, the next time you go to login, you can enter one of the codes that you were given via text. Once you have used all 10 codes, you can start the process over again by clicking the blue button to send new text codes.