Two-Factor Authentication
At the University of Cincinnati, we're committed to your digital security, choosing Duo for Multi-Factor Authentication to safeguard both your personal and university data.
Strengthen Your Security with Duo
Duo's approach is straightforward yet powerful: it combines something you know (your password) with something you have (a mobile device). This method significantly bolsters your defenses against unauthorized access. If someone manages to crack your password, they still face the hurdle of the second verification step, which is uniquely yours. It's a personalized shield, adding a robust layer of security to your individual UC experience.
The Duo Mobile App
Choosing the Duo Mobile app is a step towards personal empowerment in your digital security journey. Features like Duo Push and one-time passcodes transcend the traditional methods of text and phone call verifications are; they are designed for your convenience and security. For detailed guidance on enrolling your device with the Duo Mobile app, please visit the Digital Technology Solutions page.
New! Users will no longer be able to use Duo Mobile on Windows Phone to authenticate as of February 3, 2025.
To ensure your Windows Phone users’ uninterrupted ability to authenticate, we recommend allowing additional authentication methods that do not rely on Duo Mobile before February 3, 2025. In addition to providing a seamless authentication experience for Windows Phone users during this end of life, having multiple available authentication methods is a best practice for all users.
Duo Mobile Support Changes for iOS and Android
Effective February 17, 2025, the Duo Mobile app will no longer support devices running iOS 15 or earlier. To ensure continued functionality and access to important updates, Apple devices on iOS 15 or older are strongly encouraged to upgrade to the latest iOS version. This ensures ongoing security improvements and compatibility with the Duo Mobile app.
The Duo Mobile app is the preferred choice for Duo MFA, offering both superior security and ease of use. The “Remember Me” feature enhances convenience by enabling users to skip two-factor authentication on trusted devices for a specified duration. Additionally, Duo Push allows for quick and secure login approvals with just a single tap.
What Happens If You Cannot Upgrade?
If your device cannot be updated to a newer iOS version:
- Duo Mobile features (e.g., Duo Push and Duo Passcodes) will continue to work only if the app is already installed prior to February 17, 2025.
- However, the IT Service Desk will no longer be able to troubleshoot issues related to the Duo Mobile app on iOS 15 or earlier.
- Maintenance fixes, security updates, and new app versions will no longer be available for devices running iOS 15 or earlier after this date.
NOTE: Why Am I Receiving a Duo Push in a Different Language on My iPhone or iPad?
If you're using iOS 15 or iPadOS 15, Duo Push notifications or elements in the Duo Mobile app may appear in a different language due to a known bug in these versions of Apple’s software: Duo Mobile Application Bug.
Android Devices
While this update specifically impacts iOS devices, it’s important to note the following for Android users:
- Android 10 has reached its end-of-life and no longer receives security updates.
- Android 11 is nearing the end of support and is not receiving security updates as of February 2024.
- Devices running Android 12–14 are still supported, but users are encouraged to upgrade to Android 15, the latest version, for optimal performance and security.
Recommended Supported Versions:
To ensure the best experience and continued security, Duo Mobile supports the following operating system versions:
- iOS: iOS 17, iOS 18
- Android: Android 12, Android 13, Android 14, Android 15
Note: While Duo Mobile may function on Android 11, updating to a supported version is highly recommended for security and compatibility.
For assistance with updating your device, contact the IT Service Desk. Stay proactive in keeping your devices secure!
SECURITY REMINDERS
- Public Computer Caution: Avoid selecting 'Trust this browser' on public computers or devices you don't own. This ensures your account remains secure even if the device falls into the wrong hands.
- Stay Alert for Suspicious Activity: Report any unexpected Duo authentication prompts immediately. If you receive a prompt without initiating it yourself, it could indicate an unauthorized attempt to access your account.
- Regularly Review Your Devices: Periodically check the devices registered in your Duo account. Remove any old or unused devices to minimize security risks.
- Keep Your Information Private: Never share your Duo authentication methods or passcodes with others. Your security credentials are personal and should remain confidential.
FAQ
Almost none. 500 pushes to your device will use about 1 MB of data in total, which is roughly equivalent to loading one webpage on your smartphone.
No, the app does not have access to or visibility into your phone beyond what any other app would. Duo Mobile cannot read your emails, track your location, see your browser history, and it requires your permission to send notifications. It also cannot remotely wipe your phone.
The app only needs to access your camera when scanning a QR code during the activation process. This is a one-time requirement for setting up the app on your device.
You can still authenticate without an internet connection or cellular signal. Simply tap the icon in the Duo Mobile app to generate an authentication passcode. These passcodes can be generated offline.
For more information and answers to other common questions, please visit the dedicated DTS MFA webpage. If you require further assistance, our IT Help Desk is ready to help. Contact them at 513-556-HELP (4357) or 866-397-3382 and select option 2. From a university phone on campus, dial 6-HELP (4357) and select option 2.