What is Duo Mobile?
Auburn University uses Duo Security to prompt individuals for a secondary confirmation of their identity at log in using a physical device in their possession. This process is called multi-factor authentication, or MFA. The physical device may be a smartphone or tablet using an app, a text message to a phone, an automated voice call to landlines or cell phones, or a hardware token.
AU employees and students are strongly encouraged to register at least two alternative devices, such as a smartphone or cell phone number (as a landline) or a tablet.
Why Do I Need Duo Mobile?
Duo Mobile is a security requirement for AU employees and students. Duo Mobile uses multi-factor authentication to confirm your identity when accessing certain university resources.
Applications/Resources Requiring Duo Mobile
This is a partial list of software utilized by Auburn and whether it is protected by VPN or Duo MFA.
VPN Required:
- Banner Administration
- File Share (R Drive, etc.)
- IT Support/Remote Work
- Remote Desktop Protocol (RDP)
MFA Required (VPN is NOT Required):
- ServiceNow
- Box (Cloud Lock, etc.)
- Microsoft 365: Email (owa.auburn.edu and client based), Teams, OneDrive
- OIT Virtual Desktop Interface (VDI) (Horizon, Azure, Windows Virtual Desktop, etc.)
- Banner Self-Service (Human Resources Liaison may require VPN for some screens)
Auburn Credentials Required (VPN and Duo MFA Not Required):
- Canvas
- Panopto
- Zoom
- Kronos
Using a Duo Token
Since a majority of our faculty, staff, and students have a mobile device for everyday use, many find that their mobile device works conveniently as a two-factor authentication method with Duo. However, we do have a smaller group of users who prefer not to use or carry a mobile device or tablet. For these users, a Duo hardware token is a basic method of authentication and may be the easiest two-factor solution. Duo tokens are only recommended for those who do have a mobile device, yet still need to access applications or resources that require Duo security. For those with a mobile device, we recommend using the Duo app.
Obtaining a Duo Token:
Duo tokens are available for purchase from the AU Bookstore Study Essentials store on the 2nd floor of the RBD Library. They may be purchased via any payment method the AU Bookstore accepts.
Below is an image of a Duo token:
Important: Once you have purchased a Duo token, visit the IT Service Desk for activation. The IT Service Desk is available to activate Duo tokens from 8:00 a.m. to 4:00 p.m., Monday through Friday, and is located on the 3rd floor of the RBD Library (3010).
Once activated, you will use this token to access applications or resources that require Duo security.
Authenticating with a Duo Token:
1. To authenticate using a Duo token once it is activated, navigate to auburn.edu/duo. If you had previously used a different authentication method, you may be prompted to authenticate with a different method, as shown below. To change to the Duo token authentication method, select Other options, and select Hardware token.
2. Press the button on your Duo token to generate a new passcode, and type it into the space provided on the Duo prompt screen. Select Verify. You may then see an additional prompt asking if you would like to remember your device for future logins.
To sign into an application or resource that requires Duo security (for example, Palo Alto Global Protect VPN):
- Enter your Auburn username
- Press the green button on the Duo token to generate a new Duo code.
- In the password field, you will need to enter your Auburn password followed by a comma and the Duo code generated by the token. When entering your password, the comma, and the Duo code, do not enter any spaces (Example: password,862325).
Each time you sign into an application or resource that requires Duo security, you will need to generate a new Duo passcode from your Duo token.
Tokens can get "out of sync" if the button is pressed too many times in a row, and the generated passcodes are not used for login. If you have tried to generate a code several times and are still unable to log in, your Duo token may need to be resynced. To resync the Duo token, contact the IT Service Desk at (334) 844-4944 or visit us on the 3rd floor of the RBD Library (3010). Please remember to bring your Duo token with you.