Introduction

This article outlines the process for authenticating with the University of Alberta’s Multi-factor Authentication service, Duo. Multi-factor Authentication (MFA) is a form of authentication that requires one or more verification methods in addition to your CCID and password to access a resource, application, online account, or a VPN.

Applicability

Duo Security multi-factor authentication (MFA) has been enabled for some services and some CCID holders within the University of Alberta domain. Eligible users will encounter a second authentication step to verify their identity when logging in to certain applications, such as Google Workspace Apps, Peoplesoft, or the IAM system (Also knows as IIQ). This article provides information on using Duo Security multi-factor authentication with your CCID.

Duo Security authentication is required when accessing Duo protected applications from ANY COMPUTER OR DEVICE, not just from your mobile phone. Eligible users will receive email communications when their Duo account is created. If you have not received any such emails, you are not eligible for Duo Security at this time.

Procedure

Before you begin:

• You must have a mobile device enroled with Duo Security, see How to Enrol with Duo Security
• If you don't find what you are looking for here, see Duo Security Frequently Asked Questions (FAQ)
• If you have temporarily lost access to your device enroled in Duo, you can contact IST to request passcodes that can be used to login with Duo

Need help? Contact Information Services and Technology

Contents

• Default Authentication Method
• Switching Authentication Methods
• How to Authenticate With Duo Using Duo Push
• How to Authenticate With Duo Using a Passcode

Default Authentication Method 

1. When accessing a resource or service which requires Multi-factor Authentication you will be presented with the Duo web interface. The web interface will default to your most recently used authentication method. If you haven't used it before, it will default to a push notification if you have the Duo Mobile app installed (1), or a passcode if you do not (2).
   
   

Switching Authentication Methods 

1. If you would like to use a different method than the default, select 'Other options' near the bottom of the panel.
   
   
   
   
2. Then, select the alternative authentication option you'd like to use from the available list
   

How to Authenticate With Duo Using Duo Push 

1. If your default authentication method or selected alternative authentication method is Duo Push, a push notification will automatically be sent to your mobile device via the Duo Mobile app.
   NOTE: If you don’t see the option to Send Me a Push in the Duo Web interface, you will need to re-enrol your device - see How to Re-enrol Your Device.
    
2. On your mobile device, tap on the Duo Mobile notification, and select Approve.
   IMPORTANT: If you ever receive a push notification when you aren’t trying to log in with your CCID, select Deny then select It seemed fraudulent.
   
3. After you approve the login from the app, you will automatically be logged in to the application you are accessing.

How to Authenticate With Duo Using a Passcode

1. If your default authentication method or selected alternative authentication method is Duo Mobile passcode or Hardware token, a screen will appear to allow you to enter your passcode.
   
2. Open the Duo Mobile app on your mobile device and tap University of Alberta. This will display a 6 digit number. Alternatively, press the button on your MFA key fob to generate a new passcode.
   
3.  Enter the 6 digit passcode in the text field (1), then click Verify (2)