Duo Security – Multifactor Authentication
By requiring two different channels of authentication, we can protect user logins from remote attacks that may exploit stolen usernames and passwords. As you are aware, security breaches based on compromised usernames and passwords have been on the increase, some as a result of phishing emails. You can learn more about two-factor authentication by watching this YouTube video.
During the initial phase in May, Duo security will only be in effect when logging into Workday, Kronos, Library, and Axiom applications. During the second phase on a future date yet to be determined, Email, PeopleSoft and other applications will be protected by Duo.
Why are we deploying Duo?
- To help prevent unauthorized access to your accounts. As a CGU employee or student, you may have access to confidential and sensitive information about students, the college, and even yourself (see policy on safeguarding confidential and sensitive information. Adding a second authentication mechanism makes it more difficult for someone else to gain access to that information, even if your password is exposed, because the attacker won’t have access to your second-factor device.
- Increasingly, organizations are turning to two-factor as a way to increase security. Duo is the most commonly used solution in higher education.
- To reduce likelihood of CGU users’ accounts from being compromised through phishing or similar breaches.
- Open Workday iPhone App
- Login with CGU Username and Password.
- When Duo screen appears, if you want to use “Send Me a Push” button, touch that button, then touch and drag down slightly on the resulting banner at the top of the screen (see screenshot).
- Something you know (such as a password)
- Something you have (such as a smart card)
- Something you are (such as a fingerprint).
At CGU we will use the first two factors for authentication. First you will log into systems as usual with your CGU login credentials. Then you will authenticate your identity using a device such as a mobile phone. A number of device options are available (described below).
- Traditional cell phones that support phone calls
- Smartphones running Apple iOS (iPhone), Android, Blackberry or Windows Phone, which can support the Duo mobile app or phone calls
- Tablets running Apple iOS (iPad, iPod) or Android that can support the Duo mobile app
If you configured Duo to automatically call your phone or send you a push notification, the “Remember me for 7 day” option may be grayed out or hidden when the Duo prompt first appears. You must click “Cancel” on the blue bar, and repeat the authentication process to access the “Remember me” checkbox.