DUO

Duo Multi-Factor Authentication

What is multi-factor authentication?

Multi-factor authentication is a method of enhancing the traditional user ID/password combination that has been used for years. DUO provides multi-factor authentication (MFA). Multi-factor Authentication increases the security of an account by requiring a user to provide multiple forms of authentication. This generally includes something you know (a password) and something you have (such as a mobile device). Because both are required for a successful login, this protects an account by reducing the likelihood of an attacker successfully logging in. The attacker would need to know the user’s password and have access to a physical device that provides the secondary factor in order to complete a successful login.

Why is multi-factor authentication important to Connors State College?

Securing CSC’s computing environment is more important now than ever. Historically, one of the most often used methods to compromise computer systems is through individual’s user ID’s and passwords.

Getting Started

A user can log into the Duo portal using their C-Key username and password. Once they log in they are able to sign up for Duo, add a new device, or manage existing devices.

Setup Instructions

The Step-by-step instructions available include directions for both new Duo users and existing users.

The general steps are:

  1. Download DUO for android here.
  2. Log onto the CSC Duo Portal using your C-Key credentials.
  3. Select Add Devices
    1. If a device is already set up for your account you will need to authenticate using that method before proceeding to manage your devices.
  4. Select the type of device you are adding.
  5. Follow on-screen prompts (detailed in the specific help entries)

We recommend each user adds a backup device for times where the primary one is not available to them. We also recommend that users set the “When I log in” option to “automatically send this device a Duo Push.” Duo Push should be the preferred method when using MFA. Other methods such as “Call Me,” “By Passcode,” or “Passcode” should only be used when your mobile phone is not available.