Duo Security
Maintaining a secure computing environment is one of the main goals of 黑料社区 IT Services. Requiring multi-factor authentication for online University resources is one big step toward that goal.
Important note about internet browsers (e.g., Firefox, Chrome, Edge) and Flash plugins
When logging in via Duo, if your browser or Flash plugin is out of date, your browser will notify you. Please update your browser or plugin to prevent receiving this notification.
Duo: FAQ
Online security is a complicated issue. In order to fully and effectively protect the information of 黑料社区s, faculty, and staff at 黑料社区, IT Services utilizes the multi-factor authentication tool Duo.
Multi-factor authentication is the act of using a two-step login process. The first factor is always the same: your Miami password. The second factor involves creating randomized access codes every time you log into University resources.
This extra step is designed to help verify that you are, in fact, who you say you are. Malicious actors trying to gain access to your account may have the password, but they wouldn’t have access to the second factor.
Here are the folks who need to use Duo when they log in to Miami resources:
- Faculty
- Staff
- Students (undergraduate and graduate)
- Courtesy accounts
- Community accounts
- Life-long learning accounts
If you are one of these, you do not need Duo:
- Alum
- Retiree
- Emeritus
- Parent
Note: Entity accounts do not use Duo.
Read more about this below.
Enrolling in Duo is quick, easy, and painless. Most users will be automatically prompted to enroll in Duo at the same time they are setting up their online accounts when starting their journey at Miami (whether as a 黑料社区, faculty member, or staff member).
When you enroll, you will need to choose your default method for receiving access codes.
IT Services recommends that you download the Duo Mobile app to your smartphone or tablet as your primary method of authentication. It’s the most convenient, easiest way to authenticate. .
IMPORTANT: None of the phone numbers collected through an individual's enrollment in multi-factor authentication will be shared with any other applications or offices.
Our Knowledge Base links you to Duo guides for getting set up with your preferred device.
There are several ways you can receive access codes. At Miami, you can:
- RECOMMENDED: Install the Duo Mobile app on your smartphone, smart watch, or tablet. With the app, you have two options: push notifications or Mobile Passcode.
- Opt into receiving SMS messages.
- Contact IT Help to receive a temporary bypass.
- Purchase a hardware security token (USB key) from the 黑料社区 Campus Store.
We recommend that if you have a smartphone or tablet, you download the Duo Mobile app and utilize it as your primary method of authentication. It’s quick, easy, free, and painless.
How you use Duo depends on the device and method you choose for multi-factor authentication.
- If you choose to receive notifications from the Duo Mobile app on your smartphone or other smart device, when you log in, you will simply have to grant access from the app. A push notification will be sent to your device, and you review the request and tap Approve to authenticate. Internet or cellular access is required.
- If you opted to use a Duo Mobile Passcode, simply launch the Duo Mobile app on your device and click the key icon to see your current six-digit code. Internet or cellular access is NOT required for this option, since the passcodes are attached to a certain time stamp.
For the typical user, you will see a Duo prompt once every 14 days on your primary computer and browser.
However, there are a few factors that may cause that number to vary, including:
- The website you’re accessing (for added security, some sites always require a multi-factor authentication).
- Your individual browser settings (whether or not you clear cookies or are using an incognito browser—incognito sessions will be prompted for Duo every time).
- Whether or not you use more than one device and web browser (Duo authentication is required at least every 14 days for each device, browser, and browser session you use to access Miami resources).
- Whether you check the “Remember me for 14 days” box during the login process.
- Important note about internet browsers (e.g., Firefox, Chrome, Edge): When logging in via Duo, if your browser is out of date, it will notify you. Please update your browser to prevent receiving this notification. Your browser must be current by at minimum 365 days to allow login.
- For VPN users: If you're logging into VPN, you will be prompted for a Duo code each time.
The unfortunate reality of our world is that hackers are routinely trying to steal your passwords and use them for various evil things like stealing your identity, stealing money from Miami, changing grades, and a host of other terrible things. As more and more of the members of the Miami community have been affected in these ways, we have come to realize, as most universities have, that a solution like Duo is a necessity.
Students, faculty, and staff are required to use Duo and will be prompted to enroll when they attempt to access a password-protected Miami service (email, Banner, Workday, myMiami, etc).
It happens to the best of us—either we misplace something or forget to grab it on the way out the door. In this situation, call IT Help at 513-529-7900 (or initiate a live chat at ) and, once you've verified your identity, they will be authorized to give you bypass codes. At this point, you will not need Duo to log in to your account for the next 24 hours.
Important note: This is a limited-use service. Don't forget your second-factor device after this!
We recommend that anyone who travels internationally and needs to log in to Miami websites use the Duo Mobile Passcode option or a hardware token. You can use the Duo Mobile app to generate your authentication code without an internet or cellular connection. If you don’t have a smartphone or tablet, hardware tokens (USB keys) that generate codes are available for purchase at the Miami bookstore.