Duo FAQs

If you only see a blank screen in your browser in place of the Duo app setup or login screen, use this article to adjust your browser:

https://help.duo.com/s/article/3710?language=en_US

Here are the instructions for changing your default Duo login method so that the system sends a push in the application rather than calling phone number.
https://gsutech.service-now.com/sp?id=kb_article&sys_id=d9e7b255db3fdb00b7bff46c0c961956

You can use these articles to troubleshoot the issue if you are not receiving push notifications in your already installed Duo mobile app.

Manage Duo Device Settings Here
Instructions to Add or Change Duo Settings
If you cannot complete login using your device: Generate Passcode Online and Use it to Reset Duo Device

It's also important to keep a generated passcode safe as a backup for access in the event of a device change or other logon issue.

An account will lock after multiple failed authentication attempts. The account will only remain locked for 15 mins if no additional attempts are made. Wait 15 minutes to take the following steps and attempt further login.

Lockout generally happens when your Duo account is not up-to-date. You may have:

1. A new telephone number.
   (If your number is correct, your phone could be sending the Duo number to your blocked list, or you may not have a good cellular connection.) OR
2. A new device that needs to be authorized to Duo.

You can use the self-service website to set up a new phone number or device to use for Duo.

Follow these instructions to generate a bypass passcode and use it to update your Duo device settings.

If you still need assistance, contact the IIT Technology Service Desk at 404-413-4357(HELP). A representative will need to verify your identity before assisting you with updating your device option.

Duo uses a standard called modern authentication. You should be able to use Duo with any email client that uses modern authentication. The below are the common, university-supported clients.

The Outlook app will typically only prompt you with Duo for verification on initial setup and at some other instances like when your CampusID password is changed.

Generally, it is web access where you will see the prompt more often. With web access, when you are prompted by Duo to log in, there is an checkbox option to “Remember me for 7 days” to reduce how often Duo prompts for verification.

You may need to update or download a new email client to ensure you have an email client that allows for a standard that Duo uses.

Desktop
If you have Office 2013 or older installed, you’ll need to update to the latest version of Microsoft Office. To update on your work computer, download the latest version of Microsoft Office using your computer’s software center. To update on a personal computer, download the latest version of Microsoft Office from within Office 365 online.

Android Devices
Many native email clients on Android devices do not currently use a standard needed to work with Duo multifactor authentication. If you check your Office 365 staff email account using an Android device, you should install the Outlook mobile client to check your Office 365 email account. Installing the Outlook App on Android Devices

If you are already using Outlook on your Android and have trouble signing in, you may need to reset up your account.
Installing the Outlook App on Android Devices

Apple iOS Devices
If you check your Office 365 staff email account using an Apple iOS device (iPhone or iPad) with iOS 10 or lower installed, you will either need to update your iOS operating system or install the Outlook mobile client to check your email.
Installing Outlook App on Apple iOS Devices

Additionally, if you have a device with iOS 10 or newer installed and are using the native email client and are having trouble signing in, you may need to delete and reset up your GSU faculty or staff email account on the device.
Configure Your iOS Device for Campus Email Service

Sometimes when Duo is first activated or after a password change, the mail client on a device may exhibit a behavior where users are prompted to log on and then to verify multiple times. To address this issue, delete the campus email account profile in the email client and then re-add it to the email client. See the following for re-setting up your campus email account.
Configure your iOS device
Configure your iOS Device with Outlook
Configure your Android device
Configure your Android Device with Outlook
Configure your Windows Phones

The Gmail web and mobile apps do not use modern authentication and therefore do not work with Duo for checking your Office 365 email. To check your Office 365 faculty and staff email account, the recommended solution is to use the Microsoft Outlook app, which is can be set up to check multiple email accounts if needed.

Non-person accounts do not require Duo for login the way accounts associated with individuals do. Keep in mind that we suggest using delegate access for non-person accounts which means that you can reach the non-person accounts when you log in with your CampusID account, therefore protecting both accounts. Here’s how to set up delegate access. However you set up non-person account access, those accounts will not have separate Duo verification.

If your phone doesn’t meet the requirements to install Duo, you can still use it to receive a telephone call for verification. Instead of choosing to register your phone as an iPhone or Android device, you can register it to get a call as a mobile phone. Instead of choosing iPhone or Android for the type of phone, you may need to select “Other and Cell Phones” at that step if you are getting stuck by not being able to install the app from the Apple or Google Play store. Here are the overall instructions for setting up a device:
https://gsutech.service-now.com/sp?id=kb_article&sys_id=aa5fe937db641340186e5058dc961929

You can also use online generated passcodes as an additional login method.

The Duo app uses the device’s camera to take a photo of a QR code in order to quickly personalize your access for security purposes. You can deny this permission, but without this access you will have to type a long, alphanumeric “2FA secret” key to get your account working.

This article describes how to turn off permissions you may have granted the Duo Mobile application:
https://help.duo.com/s/article/3464?language=en_US

It’s possible to set up Duo to call your work phone (and also set up additional phones if appropriate for multiple locations). However, the most flexible option is to set up Duo on a personal device that you are likely to have with you on a regular basis.

Departments can also purchase a Duo hardware token, which is a small plastic device that can generate a passcode to use with Duo. Request to purchase a hardware token

Yubikeys can also be ordered through Panthermart or Amazon.

We’ve received variations of this question, which seems to refer to the Georgia Open Records Act. University records, including, but not limited to, documents, emails, notes, photographs, videos, etc., are subject to the Georgia Open Records Act and valid subpoenas, regardless of whether the information is (a) contained on a university device or a personal device (e.g. mobile phones, laptops, tablets, desktop computers, etc.) or (b) created, reviewed or maintained in university applications (e.g., Outlook, Sharepoint, etc.) or personal applications (e.g., Gmail, Yahoo Mail, etc.). University records are subject to review and disclosure, absent any valid exceptions being applicable to the particular records pursuant to the act. Personal records on a personal device are not subject to review and disclosure under the act, even if an employee or service provider’s device was otherwise used for university business.

As it relates to downloading and installing Duo on your personal device, Duo itself only transmits limited information between Duo and the university and such information could be subject to the act. However, this information is similar to the information that is already created as a result of logging into a campus system through a browser using any device (i.e., CampusID, browser version, session IP Address, operating system). If you utilize a phone call with Duo, it additionally maintains information about the phone number that was used.

Finally, the downloading and use of Duo by itself does not make your personal device subject to the act; only university records are subject to the act.

If the google playstore is not available from your location, you may be able to download the DUO Mobile APK App directly from DUO website (available for Android only). Be sure to allow push notifications for the Duo mobile app.

These two articles relate to this issue.

Downloading the app directly from the Duo website: https://help.duo.com/s/article/2211?language=en_US

How does Duo mobile work in China:
https://help.duo.com/s/article/2094?language=en_US

To comply with U.S. regulations, Duo blocks users whose IP address originates in certain countries or regions subject to economic and trade sanctions enforced by the U.S. Office of Foreign Assets Control.

Information on which regions this applies to is here: https://help.duo.com/s/article/7544?language=en_US

If you receive the error and are located in one of the listed regions, contact the IIT Service Desk to report the issue and explore solutions.

If you have a smartphone or tablet, using the Duo app with the “passcode” option may be a good option while you’re abroad. A passcode is a randomly-generated code located in the Duo app log in that you enter to approve your login attempt. Each time you log in, you'll use a different passcode generated by the app. You might choose to use this option if you have the Duo App installed on your device but do not have access to a wireless network or cellular network at the time of login.

If you don’t have access to a smartphone or a tablet while traveling, a token may also be a good option. There are two types of tokens available. Duo tokens, which are small plastic devices that can generate a passcode to use with Duo, are available for order via this form. They are available for purchase for $20 using the form. Yubikeys can be ordered from Amazon or through Panthermart to use with a laptop. Series 5 are the more flexible option. Chrome is the preferred browser to use with this option.

To use Duo, you’ll need to be near a device you’ve registered with Duo each time you log in. If you’ve registered a landline, you’ll need to answer the phone and verify login by pressing a phone key. (There are some exceptions. You won’t need Duo every time you check your email with the Outlook desktop or mobile phone client. Outlook only prompts you to use Duo the first time you log in and when you change your password. You can also chose the remember me for seven days option when logging in online to minimize how often you are prompted to verify with Duo.)

Register Multiple Devices: Keep in mind you can register multiple devices if you need to be in different locations when logging in and if you don’t have a mobile device registered. Here’s how you add additional devices.
https://gsutech.service-now.com/sp?id=kb_article&sys_id=ddeea884dbc9db40601b502bdc9619b8

You can always use a passcode for backup login.

You may want to set up multiple devices or phone numbers to work with Duo so you are prepared in case your primary phone can’t be used. The Device menu lets you switch between phones or devices.

Yes. We will coordinate delivery of Duo tokens to all campuses.

No. For the VPN, you must verify with Duo each time you sign in.