Auburn University uses Duo Security to prompt individuals for a secondary confirmation of their identity at log in using a physical device in their possession. This process is called multi-factor authentication, or MFA. The physical device may be a smartphone or tablet using an app, a text message to a phone, an automated voice call to landlines or cell phones, or a hardware token.
AU employees and students are strongly encouraged to register at least two alternative devices, such as a smartphone or cell phone number (as a landline) or a tablet.
Duo Mobile is a security requirement for AU employees and students. Duo Mobile uses multi-factor authentication to confirm your identity when accessing certain university resources.
This is a partial list of software utilized by Auburn and whether it is protected by VPN or Duo MFA.
VPN Required:
MFA Required (VPN is NOT Required):
Auburn Credentials Required (VPN and Duo MFA Not Required):
Duo's self-enrollment process makes it easy to register your phone and install the Duo Mobile application on your smartphone or tablet. Follow the instructions below to set up Duo Mobile:
1. Visit auburn.edu/duo, enter your Auburn username and password, and select Login.
2. From the Duo Security welcome screen, select Get Started.
3. Choose the type of authentication device you would like to enroll. The Duo Mobile Push authentication method is recommended, which pushes a notification to your iOS or Android phone when logging into an Auburn resource that requires Duo. While a smartphone is recommended for the best experience, a cellular phone, landline phone, or iOS/Android tablet may also be enrolled. In the example shown below, the Duo Mobile authentication method will be used.
Note: Duo mobile passcodes from the Duo app are not an option during the initial Duo web registration process or when updating existing devices (i.e. adding a new phone or changing the preferred order of devices). The passcode option will still display, but if selected, it will generate an "incorrect passcode" error message in a red Duo status bar.
4. Select your country from the drop-down list, and enter the phone number of the smartphone, cell phone, or landline phone that you will have with you when you are logging into a Duo-protected resource. Select Continue.
Note: If you chose "Phone number" as the type of authentication device to enroll in the previous step, you'll enter your phone extension on this screen. If you are going to use Duo Mobile on a tablet (like an iPad) with no phone service, do not enter a phone number and select I have a tablet instead.
5. Verify that you have entered the correct phone number and select Yes, it's correct.
Note: If the phone number you entered already exists in Duo as the authentication device for another user, then you will need to enter a code sent to that number by phone call or text message to confirm that you own it. Choose how you want to receive the code, and enter it to complete verification and continue.
6. The next screens will prompt you to confirm phone ownership. Select Send me a passcode, enter the verification code from your phone, and select Verify.
7. If you have chosen the Duo Mobile method, you will see a screen prompting you to download the Duo Mobile app. Duo Mobile is an app that runs on your smartphone and helps you authenticate quickly and easily. Without the Duo Mobile app, you will still be able to log in using a phone call or text message for authentication, but for the best experience, we recommend that you use the Duo Mobile Push authentication method.
Download and install the Duo Mobile app on your phone or tablet from the Google Play Store or Apple App Store.. After installing the app, return to the enrollment prompt, and select Next.
8. Activating the Duo Mobile app will link it to your account so that you can use it for authentication. From your smartphone, open the Duo Mobile app that you installed, select Add + in the upper right corner, and select Use QR code. Scan the barcode displayed on the screen.
Your Duo account will sync, and in the Duo app, you will prompted to change your Account name - this is an optional step.
Note: If you are not able to scan the QR code, select Get an activation link instead, and enter your email address to send the activation link to yourself. Follow the instructions in the email to activate the new account in Duo Mobile.
9. After successfully scanning the barcode and linking your account, you will see confirmation on your screen that Duo Mobile was added. Select Continue. If you are unable to scan the barcode or are having issues at this step, contact the IT Service Desk at (334) 844-4944, and we can send you an activation link instead.
10. When you select Continue after registering your first authentication method, Duo prompts you to add another device. Select Skip for now. Once your initial device has been registered for Duo, you can add an additional authentication method. Visit the KB article Managing Devices in Duo for instructions on adding a device. It is a good idea to add a second authentication method that you can use as a backup if the first method you added is not available to you at some point (ex: if you lose or forget your phone and need to log in with Duo).
11. You have now completed the Duo registration process. Click Log in with Duo.
12. You can now log in to a Duo-protected resource with Duo Mobile authentication. When logging in, you will automatically receive a push notification on your smartphone if you selected Duo Mobile as your authentication method. If you prefer to authenticate using a different method, you can select "Other options" to view alternative methods.
Select Approve on the Duo push request received on your smartphone as shown below:
13. You'll also see a prompt on your screen to remember your device for future logins up to 7 days. Following this step, you will be directed to your Auburn Duo-protected resource that you are trying to access.
Note: If you selected to receive phone calls for Duo authentication, you will receive a phone call on your enrolled number and will press 7 to approve the authentication request. The phone number on caller ID will always be (334) 844-4944, which is the Auburn OIT Service Desk.
If you are a Yubikey user or have a Duo hardware token, your device may have already been registered for you, and you may not be able to follow the instructions above.
If you have any issues setting up Duo Mobile, please contact the IT Service Desk at (334) 844-4944.