Duo Security

Summary

General information and FAQ for Duo Security

Body

Description

Duo Security provides Multi-Factor Authentication (MFA) for Idaho State University (ISU), adding an essential layer of protection for your ISU accounts in compliance with the Gramm-Leach-Bliley Act (GLB Act). Duo helps safeguard your accounts against phishing, social engineering, and password attacks by requiring an additional verification step whenever you log in to a Duo-protected ISU website. This can be done using your smartphone, tablet, or Duo Token. This article will guide you through setting up and using Duo at ISU to keep your accounts secure.

Students - Staff - Faculty

Setting Up Duo Mobile

Download the DUO app to your smartphone

DUO Mobile is available on Android and iOS devices through their respective app stores.
- Google Play Store
- Apple App Store

Note: Installing DUO Mobile on your smartphone is the best option for using DUO. If this is not possible, please get in touch with the IT Service Desk at (208)-282-4357 for assistance.

Enroll your account in DUO

When you first claim your ISU account, you will be prompted to set up Duo security.
- Note: You must complete the DUO setup in a single session on a smartphone or tablet.
1. We recommend enrolling multiple devices to ensure access at all times.
2. ISU and DUO recommend updating your device to the latest version of Android or iOS to ensure your information stays secure.

Activate DUO Mobile

Click, I have DUO Mobile installed on your device, then scan the QR code with your smartphone.
- Note: If you do not have access to a second device, select Email me an activation link and check your ISU email for the link.
Click Continue when you see the green check mark over the QR code on the Activate DUO Mobile screen.
Select an Authentication Method from the When I Log In drop-down.
- Note: DUO Push is the ISU preferred method; however, both options are listed when signing on to ISU-protected systems and services.
Click Finish Enrollment.

Using Duo Mobile

DUO Push (Recommended): The easiest, fastest, most reliable, and most secure method of authentication.

Log into an ISU site (e.g., MyISU, Canvas, IAM)
- Note: DUO will notify you if your software or browser is outdated. In most cases, you can skip updating these systems during use. However, if your browser is too outdated, you will be required to update it before logging in.
Duo will send a Duo Push by default.
Open the notification on your device.
In the DUO app, select the Green Check Mark to authenticate your login.
- Note: If you have enabled notifications for DUO Mobile, you can verify without opening the app.
- Note: Each push notification lasts 60 seconds.

Other Options: If you do not want to or can't use Duo Push, click the link Other Options and select from the following:

Duo Push
Duo Mobile passcode
- You can receive a passcode by opening the DUO app and selecting Show under the ISU logo.
  - Note: This does not require wireless connectivity.
Hardware Token
- You can submit a Duo Token Request
Bypass Code
- The IT Service Desk provides this after your identity has been verified.

Duo will ask Is this your device?

Select Yes, this is my device to be remembered for 12 hours. This applies only to the same device, IP address, and browser on which you activate it.
Select 'No' if other people use this device, such as a computer used by multiple users.

Additional Information:

All faculty, staff, and registered Students are required to use DUO, except those under 18 or in the early college program.

Transferring Duo from my Old Phone

Got a new phone, but still have your old one?

Install the Duo Mobile app on your new phone.
Log in to the Password and Account Management Portal (IAM) with your ISU Username and Password.
Click on My Security on the left side.
Select Add a deviceunder Duo Devices at the top.
Enter a name for your device under Device Name.
Ensure that you select iOS or Android under Platform Type, depending on the type of phone you have.
Type your phone number in the following format (000) 000-0000 or 000-000-0000.
Click the Check Box after you ensure your number is correct and select Submit.
Select a method to link your new phone and Duo.
- Send a secure link to 000-000-0000. (Easiest Method)
  1. You will receive a text message.
  2. Open this text message and click on the link inside.
- Activate Using Duo Mobile
  1. Open Duo Mobile and select Set up account.
  2. Select Use a QR Code.
- Send an email to the personal email address on file.
  1. You will receive an email from help@isu.edu. Please open this email on the new phone, not on a different device.
  2. Click on the link in the email.
You can now remove your old phone by clicking on your old phone and clicking Remove.

Got a new phone and don't have access to your old phone?

Install the Duo Mobile app on your new phone.
- If your number remains the same, please email the IT Service Desk at help@isu.edu.
  1. We will promptly send you a re-link via email and text message to your personal email address and your current phone number on file.
- If your number has changed, please call the IT Service Desk at (208)282-HELP (4357).
  1. They will verify your identity and update your ISU account to reflect your new number.
  2. They will then prompt you to re-link with an email and text message to your personal email address and the updated phone number on file.

No longer have a Duo Mobile App-compatible Device?

Please call the IT Service Desk at (208)282-HELP (4357).

They will verify your identity and provide you with a bypass code for the day.
Log in to the Password and Account Management Portal (IAM) and click My Security.
Click Generate Bypass Codes under Duo Bypass Codes.

Then:

Get a new Duo-compatible Device or submit a Request for a Duo Token

Duo Accessibility for Visually Impaired Users

Description

This article guides visually impaired users on accessing and using Duo Security, including alternative methods to receive authentication codes when you cannot see the standard Duo code prompt.

Instructions

Enroll in DUO VIA the enrollment email.

Note: If you did not receive an enrollment email, please get in touch with the IT Service Desk at (208)282-HELP (4357)

Open the email invitation and follow the setup instructions provided.
Once setup is complete, go to MyISU and log in.
Enter your Username.
Enter your Password.
Select Send me a push notification.
Check your mobile device for a notification.
Open the notification.
Click Approve to complete the login.

Note: Most screen readers should allow the reading of the approval notification and the Duo prompts

Step 2 - Faculty and Staff

If you are required to use Duo Desktop, you will see a Duo Desktop download button within the Duo Prompt during the ISU system login process. Please follow the instructions below.

Duo Desktop

Log in to MyISU with your ISU Username and Password (or another Duo-protected ISU system)
Click Sign In (orange button)
Click Download Duo Desktop if you are redirected to the Install Duo Desktop screen.
Go to your device download folder and locate DuoDesktop
- You can also find it by clicking on the in the top right of your browser and double-clicking on DuoDesktop.msi
Click YES for the Windows Admin prompt
Click Continue after confirming that "Install for all users of this computer" is highlighted.
Click Install
Click Close when you see that the installation was successful.
- Note: Once the installation is complete, return to the Duo-protected login screen and proceed to log in to the system.

Duo FAQ

What Services are Duo Protected?

Duo Protected Services at ISU

Service	Development	Production
ADG Online Orientation
Aim - Disabilities
Banner
Barnes & Nobel
BDM - CAS
Boss (Blackbaud Award Management)
Box
Cayuse
Chrome River Travel
College Pads
CollegeNet
Cornerstone TMS
CBORD Get
Degree Works
DuBot
EAB
EMS Room Scheduling
Evisions
Experience
Experience Test
Gmail
Handshake & Handshake App
Jaggaer
Luminis
Maxient
Maximus Web Space
Millennium Fast
Moodle
Payment Works
Qualtrics
Rave Notification
Recruit
Safe Colleges
Swank Motion Pictures
T2 Parking
TerminalFour Campus WEB
TigerTracks
TouchNet
Zoom

Go to the Forgot Your Password for assistance resetting your ISU Password
Go to the Updating Browsers and Mobile OS article for assistance updating your browsers and mobile operating systems
Go to the Clearing Cache and Cookies article to fix issues with loading or formatting pages

Go to our Duo Project Launch Feedback Form to answer a short survey about your initial experience with Duo

What is the Purpose of Duo?

Why did ISU adopt Duo?

Multi-factor authentication, such as Duo, is required under federal regulations under the Gramm-Leach-Bliley Act.
Duo is one of the best ways to protect against remote attacks, including phishing, credential theft, and other attempts to take over your accounts. Without your physical device, remote attackers can’t impersonate you to gain unauthorized access to the ISU network, your financial information, and more.
Duo helps to reduce the risk of devastating and costly security breaches.
Duo enhances security across IT systems that use username and password authentication, including MyISU, Banner, Canvas, and others.
Duo is being implemented to provide an additional layer of security, protecting your account from unauthorized access and enabling real-time control over login events. With Duo, you will be alerted on your mobile device anytime anyone attempts to log in as you.

Why do I need Duo?

ISU faculty, staff, and students will be required to use it for ISU systems and applications that have been enabled.
Duo protects access to your campus accounts, even if your Bengal ID or passwords are guessed or stolen.
Even if someone steals or hacks your password, they won't be able to log into protected services because they won't have access to your phone, tablet, or token.

How does Duo work?

You can use a smartphone or tablet that most of us already have. This is the preferred method at ISU. It allows you to use the Duo Mobile app to receive push notifications for easy, one-tap authentication.
Once you have successfully enrolled in Duo, you are ready to start using it. When logging into a Duo-protected service or application, you will enter your username and password as you usually do when signing onto ISU systems. After entering your login credentials, Duo will prompt you to complete a second verification step using a registered device linked to your Duo account, such as a smartphone.

Note: We offer alternatives if you don't have a mobile device or can't use the Duo app.

What are the benefits of Duo?

Ensure users are legitimate at every access attempt
Verify the trustworthiness of each device used to access ISU applications
Limit and monitor sensitive information exposure
Secure and straightforward interface for every login

Questions Regarding Duo Mobile?

Why am I not receiving push notifications?

Android: In most cases, if your phone is on and the screen is active, you can receive messages, and the app will open for a Duo Push request. On the other hand, if the phone is on, receiving messages, and the screen is inactive (dark), you should receive an alert (a sound or vibration) and a message indicating that you have received a Duo Login Request. Open the Duo app and Approve or Deny the request.
- Refer to Duo's detailed instructions to resolve this issue.
Apple: Apple phones don't allow this. If your phone is on and can receive messages, you should receive a message asking, "Are you logging in to Fischer Web SDK?". You can click the request and approve or deny it. In some cases, Apple devices may not display a message indicating that you have received a Duo Push Request. If this happens, open the Duo app and Approve or Deny the request.
- Refer to Duo's detailed instructions to resolve this issue.

Note: If push notifications are still malfunctioning, reactivate Duo Mobile.

Why is Duo asking me to authenticate even when I told it to "remember me for 12 hours"

Selecting Remember me for 12 hours allows you to bypass Duo authentication for a period of twelve (12) hours. This applies to one (1) computer, one (1) IP address, and one (1) web browser.

Note: You will be prompted to authenticate with Duo if you open another web browser or use a different computer.

How much space does the Duo Mobile app take up on my phone?

The iOS app requires about 10 MB of free space
The Android app requires about 30 MB of free space

Is the Duo Mobile app safe to download and use?

Duo Mobile is available on Android and iOS through their respective app stores.

Go to the Google Play Store
Go to the Apple App Store

Which iOS Versions are supported by Duo Mobile?

If you have trouble downloading the Duo Mobile app, verify that your Android or iOS version is supported. Go to Find your Operating System to locate the system you currently have.

Go to Duo Android Mobile Support for details
Go to Duo iOS Mobile Support for details

How much data does the Duo Mobile app use?

500 pushes to a device will use about 1 MB of data, roughly equivalent to loading one webpage on a smartphone.

Trying to log in, but Duo states your account is locked?

Please contact the IT Service Desk to resolve this lock by calling or visiting in person.

I don't have my Duo device (phone, etc). How do I log in?

Please contact the IT Service Desk for exceptional situations in which you need to log in but do not have your registered device. They will verify your identity and provide you with a temporary passcode.

What should I do if I get a Duo push notification I didn't expect?

Report all Duo Push messages you did not generate to the IT Service Desk. This may indicate that someone is attempting to access your account without authorization and that your password may be compromised. Deny the push notification, then confirm it’s a fraudulent attempt. You should change your ISU password if this occurs.

Select DENY in the Duo Mobile App if you receive a push notification that you did not initiate.
Go to the ISU Password Reset Portal and reset your password.

Should I allow my Duo mobile app to update automatically?

Yes. Keeping the Duo app up to date will ensure that any security vulnerabilities are resolved as quickly as possible.

What should I do if my Duo device is lost/stolen/damaged?

If your authentication device has been lost/stolen/destroyed, contact the IT Service Desk for a temporary passcode to access your ISU services. The team can disable your device from authenticating with Duo.

Note: Your ISU Username and password (first factor) will continue to protect your ISU account even if your device is lost.

Smartphone Users: The Duo Mobile app includes a feature called Duo Restore. This functionality is available to Duo Mobile users on Android and iOS to back up their Duo-protected accounts and recover them when they get a new device. See Duo's Guide to the Duo Restore feature for Duo Mobile account recovery.

I changed my device and can't authenticate with Duo.

If you are unable to log in on your device, please contact the IT Service Desk. After verifying your identity, they can help you reactivate your device or set up a new one.

Questions Regarding Duo Token?

How do I request a token?

In some circumstances, you may be unable to log in using the Duo app. If you cannot download/use the DUO app, complete a Duo Token request. You must indicate whether you are a faculty member, staff member, or student; your campus location; a preferred contact phone number; and the reason for requesting a token (e.g., unable to download the app, traveling overseas).

How do I return a token?

If you no longer need your Duo Token, please return it to the IT Service Desk. We will disassociate it from your account and ready it for another user.

How do I get a token if I am not on campus?

If you are unable to visit one of our campuses (Pocatello, Idaho Falls, Meridian, or Twin Falls) in person, please include your current mailing address on your Duo Token request , and we will mail you a token. When you receive your token, please contact the IT Service Desk to activate it.
- Note: We will not mail tokens to international addresses. The client must be living in the United States.

If I find a token on campus, where should I return it?

If you find a Duo token, please turn it into your campus's IT Service desk.

Who do I contact if I lose or break my token?

If your token is lost, please notify the IT Service Desk immediately. We will remove the device from your account and help you set up another device or token.
- Note: Occasionally, your Duo token may disconnect, preventing you from logging in to your account. If this happens, contact the IT Service Desk, and we will resynchronize the token by re-adding it to your account.

Why is my Duo Token Number now working?

The Duo token may be out of sync and require resynchronization with Duo. This occurs when the green button on the token is pressed multiple times without using the generated numbers to complete the multi-factor authentication. To re-sync it, contact the IT Service Desk.

Traveling out of the USA and need Duo access?

Most people can use the Duo Mobile app on a smartphone or tablet when traveling. The app can generate a passcode even without a cellular or Wi-Fi connection.

Duo offers multiple options to meet your travel needs. You may be able to use your regular Duo option to log in to a Duo-protected ISU system or application while traveling. Alternatively, you may need to use alternative options, depending on your preferred choice and travel plans.

Note: Duo is subject to U.S. export control regulations when traveling to embargoed countries.
- Go to the Export Control at the ISU Website for guidance

Why does Duo say Firefox is out of date when Firefox says it’s up to date?

Windows (10/11) or macOS (10.15 or newer).

Possible Issues:

Extended Support Release is an extended support installation available for older devices and also downloadable on newer devices. This installation of Firefox will not receive the latest updates and cannot be used with Duo. You can check whether you have this by following the steps below.
This can be resolved by installing the default version of Firefox from the website. Be sure to back up your bookmarks or sign in and enable the sync option. You can now remove the ESR installation of Firefox and replace it with the default using the setup tool downloaded from Firefox.
Go to Updating Browsers and Mobile OS for information on updating your system.
- Contact the IT Service Desk for additional assistance.

Still having issues? Try some of these suggestions

Visit Duo's Website for additional guides, videos, instructions, and more.
Visit the "Updating Browsers and Mobile OS" article for assistance with updating your browsers and mobile operating systems.
Visit the Clearing Cache and Cookies article to resolve issues with page loading or formatting.

Contact ITS if you need additional assistance

Details

Article ID: 153081

Created

Mon 7/24/23 12:08 PM

Modified

Fri 12/19/25 10:33 AM

Related Services / Offerings

Related Services / Offerings (1)

Duo Token Request

Request a Duo token for secure ISU account access if you don’t have a smartphone or work in areas where phones aren’t allowed.

Duo Security

Summary

Body

Description

Students - Staff - Faculty

Setting Up Duo Mobile

Enroll your account in DUO

Activate DUO Mobile

Using Duo Mobile

DUO Push (Recommended): The easiest, fastest, most reliable, and most secure method of authentication.

Other Options: If you do not want to or can't use Duo Push, click the link Other Options and select from the following:

Transferring Duo from my Old Phone

Got a new phone, but still have your old one?

Got a new phone and don't have access to your old phone?

No longer have a Duo Mobile App-compatible Device?

Duo Accessibility for Visually Impaired Users

Description

Instructions

Step 2 - Faculty and Staff

Duo Desktop

Duo FAQ

What Services are Duo Protected?

Service

Development

Production

What is the Purpose of Duo?

Why did ISU adopt Duo?

Why do I need Duo?

How does Duo work?

What are the benefits of Duo?

Questions Regarding Duo Mobile?

Why am I not receiving push notifications?

Why is Duo asking me to authenticate even when I told it to "remember me for 12 hours"

How much space does the Duo Mobile app take up on my phone?

Is the Duo Mobile app safe to download and use?

Which iOS Versions are supported by Duo Mobile?

How much data does the Duo Mobile app use?

Trying to log in, but Duo states your account is locked?

I don't have my Duo device (phone, etc). How do I log in?

What should I do if I get a Duo push notification I didn't expect?

Should I allow my Duo mobile app to update automatically?

What should I do if my Duo device is lost/stolen/damaged?

I changed my device and can't authenticate with Duo.

Questions Regarding Duo Token?

How do I request a token?

How do I return a token?

How do I get a token if I am not on campus?

If I find a token on campus, where should I return it?

Who do I contact if I lose or break my token?

Why is my Duo Token Number now working?

Other Duo Questions?

Traveling out of the USA and need Duo access?

Why does Duo say Firefox is out of date when Firefox says it’s up to date?

Still having issues? Try some of these suggestions

Contact ITS if you need additional assistance

Details

Details

Related Services / Offerings

Related Services / Offerings (1)