Duo Security

Summary

General information and FAQ for Duo Security

Body

Description

Duo Security provides Multi-Factor Authentication (MFA) for Idaho State University (ISU), adding an essential layer of protection for your ISU accounts in compliance with the Gramm-Leach-Bliley Act (GLB Act). Duo helps safeguard your accounts against phishing, social engineering, and password attacks by requiring an additional verification step whenever you log in to a Duo-protected ISU website. This can be done using your smartphone, tablet, or Duo Token. This article will guide you through setting up and using Duo at ISU, ensuring your accounts stay secure.

Students

Setting Up Duo Mobile

Download the DUO app to your smartphone

DUO Mobile is available on Android and iOS devices through their respective app stores.
- Google Play Store
- Apple App Store

Note: Installing DUO Mobile on your smartphone is the best option for using DUO. If this is not possible, please get in touch with the IT Service Desk at (208)-282-4357 for assistance.

Enroll your account in DUO

When you claim your ISU account for the first time, you will be prompted to set up DUO security.
- Note: You must complete the DUO setup in one session using a smartphone or tablet.
1. We recommend enrolling multiple devices to ensure access at all times.
2. ISU and DUO recommend updating your device to the latest version of Android or iOS to ensure your information stays secure.

Activate DUO Mobile

Click, I have DUO Mobile installed on your device, then scan the QR code with your smartphone.
- Note: If you do not have access to a second device, select Email me an activation link and check your ISU email for the link.
Click Continue when you see the green check mark over the QR code on the Activate DUO Mobile screen.
Select an Authentication Method from the When I Log In drop-down.
- Note: DUO Push is the ISU preferred method; however, both options are listed when signing on to ISU-protected systems and services.
Click Finish Enrollment.

Using Duo Mobile

DUO Push (Recommended): The easiest, fastest, most reliable, and most secure method of authentication.

Log into an ISU site (e.g., MyISU, Canvas, IAM)
- Note: DUO will notify you if your software or browser is outdated. In most cases, you can skip updating these systems during use. However, if your browser is too outdated, you will be required to update it before logging in.
Duo will send a Duo Push by default.
Open the notification on your device.
In the DUO app, select the Green Check Mark to authenticate your login.
- Note: If you have enabled notifications for DUO Mobile, you will be able to verify without opening the app.
- Note: Each push notification lasts 60 seconds.

Other Options: If you do not want to or can't use Duo Push, click the link Other Options and select from the following:

Duo Push
Duo Mobile passcode
- You can receive a passcode by opening the DUO app and selecting Show under the ISU logo.
  - Note: This does not require wireless connectivity.
Hardware Token
- You can submit a Duo Token Request
Bypass Code
- The IT Service Desk provides this after your identity has been verified.

Duo will ask Is this your device?

Select Yes, this is my device to be remembered for 12 hours. This applies only to the same device, IP address, and browser on which you activate it.
Select 'No' if other people use this device, such as a computer used by multiple users.

Additional Information:

All faculty, staff, and registered Students are required to use DUO, except those under 18 or in the early college program.

Transferring Duo from my Old Phone

Got a new phone, but still have your old one?

Install the Duo Mobile app on your new phone.
Log in to the Password and Account Management Portal (IAM) with your ISU Username and Password.
Click on My Security on the left side.
Select Add a deviceunder Duo Devices at the top.
Enter a name for your device under Device Name.
Ensure that you select iOS or Android under Platform Type, depending on the type of phone you have.
Type your phone number in the following format (000) 000-0000 or 000-000-0000.
Click the Check Box after you ensure your number is correct and select Submit.
Select a method to link your new phone and Duo.
- Send a secure link to 000-000-0000. (Easiest Method)
  1. You will receive a text message.
  2. Open this text message and click on the link inside.
- Activate Using Duo Mobile
  1. Open Duo Mobile and select Set up account.
  2. Select Use a QR Code.
- Send an email to the personal email address on file.
  1. You will receive an email from help@isu.edu. Please open this email on the new phone, not on a different device.
  2. Click on the link in the email.
You can now remove your old phone by clicking on your old phone and clicking Remove.

Got a new phone and don't have access to your old phone?

Install the Duo Mobile app on your new phone.
- If your number remains the same, please email the IT Service Desk at help@isu.edu.
  1. We will promptly send you a re-link via email and text message to your personal email address and your current phone number on file.
- If your number has changed, please call the IT Service Desk at (208)282-HELP (4357).
  1. They will verify your identity and update your ISU account to reflect your new number.
  2. They will then prompt you to re-link with an email and text message to your personal email address and the updated phone number on file.

No longer have a Duo Mobile App-compatible Device?

Please call the IT Service Desk at (208)282-HELP (4357).

They will verify your identity and provide you with a bypass code for the day.
Log in to the Password and Account Management Portal (IAM) and click My Security.
Click Generate Bypass Codes under Duo Bypass Codes.

Then:

Get a new Duo-compatible Device or submit a Request for a Duo Token

Duo Accessibility for Visually Impaired Users

Description

This article guides visually impaired users on accessing and using Duo Security, including alternative methods to receive authentication codes when you cannot see the standard Duo code prompt.

Instructions

Enroll in DUO VIA the enrollment email.

Note: If you did not receive an enrollment email, please get in touch with the IT Service Desk at (208)282-HELP (4357)

Open the email invitation and follow the setup instructions provided.
Once setup is complete, go to MyISU and log in.
Enter your Username.
Enter your Password.
Select Send me a push notification.
Check your mobile device for a notification.
Open the notification.
Click Approve to complete the login.

Note: Most screen readers should allow the reading of the approval notification and the Duo prompts

Faculty and Staff

If you are required to use Duo Desktop, you will see a Duo Desktop download button within the Duo Prompt during an ISU system login process. Please follow the instructions below.

Duo Desktop

Log in to MyISU with your ISU Username and Password (or another Duo-protected ISU system)
Click Sign In (orange button)
Click Download Duo Desktop if you are redirected to the Install Duo Desktop screen
Go to your device download folder and locate DuoDesktop
- You can also find it by clicking on the in the top right of your browser and double-clicking on DuoDesktop.msi
Click YES for the Windows Admin prompt
Click Continue after confirming that the Install for all users of this computer is highlighted
Click Install
Click Close when you see that the installation was successful.
- Note: Once the installation is complete, return to a Duo-protected login screen, and you can proceed with logging into the system.

Duo FAQ

What Services are Duo Protected?

Duo Protected Services at ISU

Service	Development	Production
ADG Online Orientation
Aim - Disabilities
Banner
Barnes & Nobel
BDM - CAS
Boss (Blackbaud Award Management)
Box
Cayuse
Chrome River Travel
College Pads
CollegeNet
Cornerstone TMS
CBORD Get
Degree Works
DuBot
EAB
EMS Room Scheduling
Evisions
Experience
Experience Test
Gmail
Handshake & Handshake App
Jaggaer
Luminis
Maxient
Maximus Web Space
Millennium Fast
Moodle
Payment Works
Qualtrics
Rave Notification
Recruit
Safe Colleges
Swank Motion Pictures
T2 Parking
TerminalFour Campus WEB
TigerTracks
TouchNet
Zoom

Go to the Forgot Your Password for assistance resetting your ISU Password
Go to the Updating Browsers and Mobile OS article for assistance updating your browsers and mobile operating systems
Go to the Clearing Cache and Cookies article to fix issues with loading or formatting pages

Go to our Duo Project Launch Feedback Form to answer a short survey about your initial experience with Duo

What is the Purpose of Duo?

Why did ISU adopt Duo?

Multi-factor authentication, such as Duo, is required as part of federal requirements under the Gramm-Leach-Bliley Act.
Duo is one of the best ways to protect against remote attacks such as phishing, credential theft, and other attempts to take over your accounts. Without your physical device, remote attackers can’t pretend to be you to gain unauthorized access to the ISU network, your financial information, etc.
Duo helps to reduce the risk of devastating and costly security breaches.
Duo increases the security across IT systems that use a username and password, including MyISU, Banner, Canvas, and others.
Duo is being implemented to provide an additional layer of security, thus protecting your account from unauthorized use and allowing you to have real-time control over login events on your account. With Duo, you will be alerted on your mobile device anytime anyone attempts to log in as you.

Why do I need Duo?

ISU faculty, staff, and students will be required to use it for ISU systems and applications that have been enabled.
Duo protects access to your campus accounts, even if your Bengal ID or passwords are guessed or stolen.
Even if someone steals or hacks your password, they won't be able to log into protected services because they won't have access to your phone, tablet, or token.

How does Duo work?

You can use a smartphone or tablet that most of us already have. This is the preferred method at ISU. It allows you to use the Duo Mobile app to receive push notifications for easy, one-tap authentication.
Once you have successfully enrolled in Duo, you are ready to start using it. When logging into a Duo-protected service or application, you will enter your username and password as you usually do when signing onto ISU systems. After entering your login information, Duo will require you to complete a second verification process using a registered device linked to your Duo account, such as a smartphone.

Note: We have alternatives available if you don't have a mobile device or are unable to use the Duo app.

What are the benefits of Duo?

Ensure users are legitimate at every access attempt
Verify the trustworthiness of each device used to access ISU applications
Limit and monitor sensitive information exposure
Simple and secure interface for every login

Questions Regarding Duo Mobile?

Why don't I get push notifications?

Android: Under most circumstances, if your phone is on, can receive messages, and the screen is active, the app will pop open for a Duo Push request. On the other hand, if the phone is on, able to receive messages, and the screen is inactive (dark), you should get an alert (a sound or vibration) and a message that you have received a Duo Login Request. Open the Duo app and Approve or Deny the request.
- Go to the detailed instructions from Duo to resolve this issue.
Apple: Apple phones don't allow this. If your phone is on and can receive messages, you should receive a message asking, "Are you logging in to Fischer Web SDK?". You can click the request and approve or deny it. Under some circumstances, some Apple devices do not display a message indicating that you have received a Duo Push Request. If this happens, open the Duo app and Approve or Deny the request.
- Go to the detailed instructions from Duo to resolve this issue.

Note: If push notifications are still malfunctioning, reactivate Duo Mobile.

Why is Duo asking me to authenticate even when I told it to "remember me for 12 hours"

Selecting Remember me for 12 hours allows you to bypass Duo authentication for a period of twelve (12) hours. This applies to one (1) computer, IP address, and web browser.

Note: You will be prompted to authenticate with Duo if you open another web browser or use a different computer.

How much space does the Duo Mobile app take up on my phone?

The iOS app requires about 10 MB of free space
The Android app requires about 30 MB of free space

Is the Duo Mobile app safe to download and use?

Duo Mobile is available on Android and iOS through their respective app stores.

Go to the Google Play Store
Go to the Apple App Store

Which iOS Versions are supported by Duo Mobile?

If you have issues downloading the Duo Mobile app, check to make sure your version of Android or iOS is supported. Go to Find your Operating System for assistance locating what system you currently have.

Go to Duo Android Mobile Support for details
Go to Duo iOS Mobile Support for details

How much data does the Duo Mobile app use?

500 pushes to a device will use about one MB or 1/1000 GB of data, roughly equivalent to loading one webpage on a smartphone.

Trying to log in, but Duo states your account is locked?

Please contact the IT Service Desk to resolve this lock by either calling or visiting in person.

I don't have my Duo device (phone, etc). How do I log in?

Please contact the IT Service Desk for exceptional situations in which you need to log in but do not have your registered device. They will verify your identity and provide you with a temporary passcode.

What should I do if I get a Duo push notification I didn't expect?

You should report all Duo Push messages that you did not generate to the IT Service Desk. This may indicate that someone is attempting unauthorized access to your account, and your password may be compromised. Deny the push notification and then confirm that it’s a fraudulent attempt. You should change your ISU password if this occurs.

Select DENY in the Duo Mobile App if you receive a push notification that you did not initiate.
Go to the ISU Password Reset Portal and reset your password.

Should I allow my Duo mobile app to update automatically?

Yes. Keeping the Duo app up-to-date will ensure that any security vulnerabilities are resolved as quickly as possible.

What should I do if my Duo device is lost/stolen/damaged?

If your authentication device has been lost/stolen/destroyed, contact the IT Service Desk for a temporary passcode so you can access your ISU services. The team can disable your device from authenticating with Duo.

Note: Your ISU Username and password (first factor) will continue to protect your ISU account even if your device is lost.

Smartphone Users: The Duo Mobile app includes a feature called Duo Restore. This functionality is available to Duo for Android and iOS Duo Mobile users to back up their Duo-protected accounts and recover them when they get a new device. See Duo's Guide to the Duo Restore feature for Duo Mobile account recovery

I changed my device and can't authenticate with Duo.

If you are unable to log in using your device, please get in touch with the IT Service Desk. After verifying your identity, they can help you re-activate your device or add a new device.

Questions Regarding Duo Token?

How do I request a token?

In some circumstances, you may be unable to log in using the Duo app. If you cannot download/use the DUO app, complete a Duo Token request. You must indicate whether you are a faculty member, staff member, or student, your campus location, a preferred contact phone number, and the reason for requesting a token (e.g., unable to download the app, traveling overseas, etc.).

How do I return a token?

If you no longer need your Duo Token, please return it to the IT Service Desk. We will disassociate it from your account and ready it for another user.

How do I get a token if I am not on campus?

If you are unable to visit one of our campuses (Pocatello, Idaho Falls, Meridian, or Twin Falls) in person, please include your current mailing address on your Duo Token request , and we will mail you a token. When you receive your token, please contact the IT Service Desk to activate it.
- Note: We will not mail tokens to international addresses. The client must be living in the United States.

If I find a token on campus, where should I return it?

If you find a Duo token, please turn it into your campus's IT Service desk.

Who do I contact if I lose or break my token?

If your token is lost, please notify the IT Service Desk immediately. We will remove the device from your account and help you set up another device or token.
- Note: Occasionally, your Duo token may become disconnected and not allow you to log in to your account. If this happens, contact the IT Service Desk, and we will resynchronize the token by readding it to your account.

Why is my Duo Token Number now working?

The Duo token may be out of sync and may need to be resynchronized with Duo. This occurs when the green button on the token is pressed multiple times without using the generated numbers to complete the multi-factor authentication. To re-sync it, contact the IT Service Desk.

Traveling out of the USA and need Duo access?

Most people can use the Duo Mobile app on a smartphone or tablet when traveling. The app can generate a passcode even if you don't have a cellular or WiFi connection.

Duo offers multiple options to meet your travel needs. You might be able to use your regular Duo option if you need to log in to a Duo-protected ISU system or application while traveling. Alternatively, you may need to use alternative options, depending on your preferred choice and travel plans.

Note: Duo is subject to U.S. export control regulations if you are traveling to embargoed countries.
- Go to the Export Control at the ISU Website for guidance

Why does Duo say Firefox is out of date when Firefox says it’s up to date?

Windows (10/11) or macOS (10.15 or newer).

Possible Issues:

There is an extended support installation called Extended Support Release, which is available for older devices but can also be downloaded on newer devices. This installation of Firefox will not receive the latest updates and cannot be used with Duo. You can see if you have this by following the steps listed below.
This can be resolved by simply installing the default version of Firefox from the website ( https://www.mozilla.org/en-US/firefox/new/ ). Be sure to create a backup of your bookmarks or sign in and activate the sync option. You can now uninstall the ESR installation of Firefox and replace it with the default using the setup tool downloaded from Firefox.
Go to Updating Browsers and Mobile OS for information on updating your system.
- Contact the IT Service Desk for additional assistance.

Still having issues? Try some of these suggestions

Visit Duo's Website for additional guides, videos, instructions, and more.
Visit the "Updating Browsers and Mobile OS" article for assistance with updating your browsers and mobile operating systems.
Visit the Clearing Cache and Cookies article to resolve issues with loading or formatting pages.

Contact ITS if you need additional assistance

Details

Article ID: 153081

Created

Mon 7/24/23 12:08 PM

Modified

Wed 11/19/25 12:15 PM

Related Services / Offerings

Related Services / Offerings (1)

Duo Token Request

Request a Duo token for secure ISU account access if you don’t have a smartphone or work in areas where phones aren’t allowed.

Duo Security

Summary

Body

Description

Students

Setting Up Duo Mobile

Enroll your account in DUO

Activate DUO Mobile

Using Duo Mobile

DUO Push (Recommended): The easiest, fastest, most reliable, and most secure method of authentication.

Other Options: If you do not want to or can't use Duo Push, click the link Other Options and select from the following:

Transferring Duo from my Old Phone

Got a new phone, but still have your old one?

Got a new phone and don't have access to your old phone?

No longer have a Duo Mobile App-compatible Device?

Duo Accessibility for Visually Impaired Users

Description

Instructions

Faculty and Staff

Duo Desktop

Duo FAQ

What Services are Duo Protected?

Service

Development

Production

What is the Purpose of Duo?

Why did ISU adopt Duo?

Why do I need Duo?

How does Duo work?

What are the benefits of Duo?

Questions Regarding Duo Mobile?

Why don't I get push notifications?

Why is Duo asking me to authenticate even when I told it to "remember me for 12 hours"

How much space does the Duo Mobile app take up on my phone?

Is the Duo Mobile app safe to download and use?

Which iOS Versions are supported by Duo Mobile?

How much data does the Duo Mobile app use?

Trying to log in, but Duo states your account is locked?

I don't have my Duo device (phone, etc). How do I log in?

What should I do if I get a Duo push notification I didn't expect?

Should I allow my Duo mobile app to update automatically?

What should I do if my Duo device is lost/stolen/damaged?

I changed my device and can't authenticate with Duo.

Questions Regarding Duo Token?

How do I request a token?

How do I return a token?

How do I get a token if I am not on campus?

If I find a token on campus, where should I return it?

Who do I contact if I lose or break my token?

Why is my Duo Token Number now working?

Other Duo Questions?

Traveling out of the USA and need Duo access?

Why does Duo say Firefox is out of date when Firefox says it’s up to date?

Still having issues? Try some of these suggestions

Contact ITS if you need additional assistance

Details

Details

Related Services / Offerings

Related Services / Offerings (1)