Duo FAQs

Manage Duo Device Settings Here
Instructions to Add or Change Duo Settings
If you cannot complete login using your device: Generate Passcode Online and Use it to Reset Duo Device

It's also important to keep a generated passcode safe as a backup for access in the event of a device change or other logon issue.

Duo uses a standard called modern authentication. You should be able to use Duo with any email client that uses modern authentication. The below are the common, university-supported clients.

The Outlook app will typically only prompt you with Duo for verification on initial setup and at some other instances like when your CampusID password is changed.

Generally, it is web access where you will see the prompt more often. With web access, when you are prompted by Duo to log in, there is an checkbox option to “Remember me for 7 days” to reduce how often Duo prompts for verification.

You may need to update or download a new email client to ensure you have an email client that allows for a standard that Duo uses.

Desktop
If you have Office 2013 or older installed, you’ll need to update to the latest version of Microsoft Office. To update on your work computer, download the latest version of Microsoft Office using your computer’s software center. To update on a personal computer, download the latest version of Microsoft Office from within Office 365 online.

Android Devices
Many native email clients on Android devices do not currently use a standard needed to work with Duo multifactor authentication. If you check your Office 365 staff email account using an Android device, you should install the Outlook mobile client to check your Office 365 email account. Installing the Outlook App on Android Devices

If you are already using Outlook on your Android and have trouble signing in, you may need to reset up your account.
Installing the Outlook App on Android Devices

Apple iOS Devices
If you check your Office 365 staff email account using an Apple iOS device (iPhone or iPad) with iOS 10 or lower installed, you will either need to update your iOS operating system or install the Outlook mobile client to check your email.
Installing Outlook App on Apple iOS Devices

Additionally, if you have a device with iOS 10 or newer installed and are using the native email client and are having trouble signing in, you may need to delete and reset up your GSU faculty or staff email account on the device.
Configure Your iOS Device for Campus Email Service

Sometimes when Duo is first activated or after a password change, the mail client on a device may exhibit a behavior where users are prompted to log on and then to verify multiple times. To address this issue, delete the campus email account profile in the email client and then re-add it to the email client. See the following for re-setting up your campus email account.
Configure your iOS device
Configure your iOS Device with Outlook
Configure your Android device
Configure your Android Device with Outlook
Configure your Windows Phones

The Gmail web and mobile apps do not use modern authentication and therefore do not work with Duo for checking your Office 365 email. To check your Office 365 faculty and staff email account, the recommended solution is to use the Microsoft Outlook app, which is can be set up to check multiple email accounts if needed.

You can do a few things to prepare in case your device is lost, stolen or forgotten. You may want to set up multiple devices or phone numbers to work with Duo so you are prepared in case your primary device can’t be used. The Device menu lets you switch between phones or devices.

When you replace a device or phone, if your phone number remains the same, you can choose to receive a phone call instead of a app notification until you re-setup a preferred method of notification (Instructions).

If your phone number changes after losing a device and a secondary phone or device option is not available, you can generate a passcode to access Duo and add a device.

If none of the options above are available to you, contact the IIT Service Desk for assistance accessing your account and getting a link to re-set up Duo if needed.

1. Use the DUO App on a smartphone or tablet.
   • Send a “Push” Notification. (A notification sent within the Duo app that you can use to either accept or deny a login attempt. These “pushes” are not text messages so they do not count toward text message charges.)
   • Receive a Phone Call.
   • Enter a Passcode. You can generate a passcode:
     • From within the Duo App. (This option works even if you are not connected to cell or Internet service, such as when you are on an airplane. This type of passcode will allow login once for each code generated in the app.)
     • Using the online passcode generator. (This type of passcode will allow login up to 20 times.)
   • Phone call to a landline or cell phone number. (No app required – you press a button when you receive the call to verify.)
   • DUO or Yubikey Token. These can either be purchased by your department or by an individual.
     • Duo tokens, which are small plastic devices that can generate a passcode to use with Duo, are available for order via this form.
     • Yubikeys can be ordered from Amazon or through Panthermart to use with a laptop. Series 5 are the more flexible option. Chrome is the preferred browser to use with this option.

Although use of a cellphone or mobile device is very flexible with Duo, you do not have to have a smartphone or cell phone to access Duo. You can use a landline phone number, or multiple phone numbers, with Duo. When you receive the call, just press any button to authorize your login. Texting is not currently enabled for security reasons.

Duo tokens, which are small plastic devices that can generate a passcode to use with Duo, are available for order via this form.

Yubikeys can be ordered from Amazon or through Panthermart to use with a laptop. Series 5 are the more flexible option. Chrome is the preferred browser to use with this option.

If your phone doesn’t meet the requirements to install Duo, you can still use it to receive a telephone call for verification. Instead of choosing to register your phone as an iPhone or Android device, you can register it to get a call as a mobile phone. Instead of choosing iPhone or Android for the type of phone, you may need to select “Other and Cell Phones” at that step if you are getting stuck by not being able to install the app from the Apple or Google Play store.

Here are the overall instructions for setting up a device:
https://gsutech.service-now.com/sp?id=kb_article&sys_id=aa5fe937db641340186e5058dc961929

No. Duo does not currently use text messages for authentication, as they were determined not to be a secure method of verification by the university’s cybersecurity team.

While you can use alternative email address to reset your CampusID password at http://campus.gsu.edu, you cannot use email address to verify login with Duo. You must use one of these Duo verification methods:

• Push Notification: Recommended. A notification sent to your mobile device or phone using the Duo app (must be installed) for you to approve or deny your log in attempt. This is the recommended option if you have a mobile device or phone on which you can install the Duo mobile app.
• Phone Call: A computer-generated call to your phone that includes a code for you to enter to approve your log in attempt.
• Enter a Passcode. You can generate a passcode:
  • From within the Duo App. (This option works even if you are not connected to cell or Internet service, such as when you are on an airplane. This type of passcode will allow login once for each code generated in the app.)
  • Using the online passcode generator. (This type of passcode will allow login up to 20 times.)
• Token: A Duo hardware token, which is a small plastic device that can generate a passcode to use with Duo, can be purchased with this form. Yubikeys can be ordered from Amazon to use with a laptop. Series 5 are the more flexible option. Chrome is the preferred browser to use with this option.

There is is an option when logging in to "remember" a device's log in for the next 30 days. It is safe to choose this option as long as you are not on a public device/computer or on device/computer you share with others. Note that using a different browser or device will require logging in with Duo again, even if you've selected to remember a log in for 30 days on another device or in another browser.

To set up the "Remember Me" setting, log in to Office 365 Faculty and Staff Email, OneUSG Connect or PantherMail (depending on which applications are protected with Duo). Select the Remember me for 30 days setting when you are prompted to verify login with Duo.

Yes. The Duo app lets you register multiple profiles. Open the Duo app and click the + at the top of the page to add Georgia State as a new account as you register for Duo.
Getting Started with Duo

Please note, however, that using a different browser or device may require logging in with Duo again, even if you've selected to remember a log in for 30 days.

It’s possible to set up Duo to call your work phone (and also set up additional phones if appropriate for multiple locations). However, the most flexible option is to set up Duo on a personal device that you are likely to have with you on a regular basis.

Departments can also purchase a Duo hardware token, which is a small plastic device that can generate a passcode to use with Duo. Request to purchase a hardware token

Yubikeys can also be ordered through Panthermart or Amazon.

We’ve received variations of this question, which seems to refer to the Georgia Open Records Act. University records, including, but not limited to, documents, emails, notes, photographs, videos, etc., are subject to the Georgia Open Records Act and valid subpoenas, regardless of whether the information is (a) contained on a university device or a personal device (e.g. mobile phones, laptops, tablets, desktop computers, etc.) or (b) created, reviewed or maintained in university applications (e.g., Outlook, Sharepoint, etc.) or personal applications (e.g., Gmail, Yahoo Mail, etc.). University records are subject to review and disclosure, absent any valid exceptions being applicable to the particular records pursuant to the act. Personal records on a personal device are not subject to review and disclosure under the act, even if an employee or service provider’s device was otherwise used for university business.

As it relates to downloading and installing Duo on your personal device, Duo itself only transmits limited information between Duo and the university and such information could be subject to the act. However, this information is similar to the information that is already created as a result of logging into a campus system through a browser using any device (i.e., CampusID, browser version, session IP Address, operating system). If you utilize a phone call with Duo, it additionally maintains information about the phone number that was used.

Finally, the downloading and use of Duo by itself does not make your personal device subject to the act; only university records are subject to the act.

If you have a smartphone or tablet, using the Duo app with the “passcode” option may be a good option while you’re abroad. A passcode is a randomly-generated code located in the Duo app log in that you enter to approve your login attempt. Each time you log in, you'll use a different passcode generated by the app. You might choose to use this option if you have the Duo App installed on your device but do not have access to a wireless network or cellular network at the time of login.

If you don’t have access to a smartphone or a tablet while traveling, a token may also be a good option. There are two types of tokens available. Duo tokens, which are small plastic devices that can generate a passcode to use with Duo, are available for order via this form. They are available for purchase for $20 using the form. Yubikeys can be ordered from Amazon or through Panthermart to use with a laptop. Series 5 are the more flexible option. Chrome is the preferred browser to use with this option.

To use Duo, you’ll need to be near a device you’ve registered with Duo each time you log in. If you’ve registered a landline, you’ll need to answer the phone and verify login by pressing a phone key. (There are some exceptions. You won’t need Duo every time you check your email with the Outlook desktop or mobile phone client. Outlook only prompts you to use Duo the first time you log in and when you change your password. You can also chose the remember me for seven days option when logging in online to minimize how often you are prompted to verify with Duo.)

Register Multiple Devices: Keep in mind you can register multiple devices if you need to be in different locations when logging in and if you don’t have a mobile device registered. Here’s how you add additional devices.
https://gsutech.service-now.com/sp?id=kb_article&sys_id=ddeea884dbc9db40601b502bdc9619b8

You may want to set up multiple devices or phone numbers to work with Duo so you are prepared in case your primary phone can’t be used. The Device menu lets you switch between phones or devices. If a secondary phone or device option is not available, contact the IIT Service Desk for assistance.

Yes. We will coordinate delivery of Duo tokens to all campuses.

Yes. Duo Security recently became a part of Cisco.

No. For the VPN, you must verify with Duo each time you sign in.