Augsburg University improves account security by using Multi-factor authentication (MFA) with a product called Duo. This is one of several requirements of our cybersecurity insurance policy.
Multi-factor authentication strengthens account security by using a second source of validation, like a phone or token, to verify your identity before granting access. Augsburg University uses multi-factor authentication for several services to minimize the risk of a security breach and reduce information security insurance costs.
What services use Duo?
- All Inside Augsburg logins
- Starting June 7, 2022 for faculty and staff
- Starting December 21, 2022 for students
- VPN & Remote Work server (used for off-campus access to enterprise applications)
Why do we need to do this?
The protection of the private information of Augsburg University community members is of critical importance to Information Technology (IT). When people are sending you phishing emails they are interested in both the information you have access to and your identity. Using your identity they can email other people at Augsburg posing as you to do more phishing. As data breaches become more sophisticated and common, our approach to information security must also evolve. A single data breach can cost a school millions of dollars. Implementing multi-factor authentication is one way to greatly reduce the risk of a breach and to satisfy regulatory and insurance requirements for data protection.
How does it work?
For students before December 21, 2022 when Duo will be required on all Inside Augsburg logins:
- You can enroll your Duo Mobile app (phone) at duo.augsburg.edu.
- The smartphone application offers quick notifications and authentication. You’ll download the Duo Mobile app from your device’s app store and follow the instructions to connect it to your Augnet account.
- If you do not have a smart phone, you can contact your LFC or the TechDesk about other options for authenticating.
When you connect to the above services, you’ll be asked to choose an authentication method.
- Duo Push – open the notification on your phone and choose Accept (this is the best option)
- Passcode – you can generate a one-time use access code within the Duo mobile app. To login, you’ll enter your username and then “password, access code” in the password field.
Why is Augsburg using Duo?
Duo is a two-factor authentication provider that helps to secure access to applications. Due to the global prevalence of security breaches in recent years, Duo is being used as an additional measure to protect Augsburg services. Adding a second factor of authentication for logins greatly improves security. It would be much more difficult for a hacker to both know your password and have possession of your phone or another device.
Do I need to use a smartphone with Duo?
The Duo Mobile smartphone app is the recommended method since it is flexible and easy to use to authenticate. If you don’t have a smart phone, please contact your LFC or the TechDesk to discuss alternative methods.
How does Duo work with my phone?
When you login to a MFA protected service, Augsburg’s system sends an encrypted message to Duo asking for the a “second factor” of authentication. Duo then sends a push notification to your smartphone app asking you to Accept or Deny the login attempt. Tapping accept on your phone lets Duo know it is you, and then replies to Augsburg’s system that the login is secure. With good network connection, this all happens in a matter of seconds.
Does Duo make any changes to my smartphone or allow Augsburg University to control other information on my phone?
No, installing the Duo Mobile app only serves to provide a second layer of authentication for Augsburg University services. Permissions used by the application are limited to those required for this purpose and to ensure that the device is not already compromised.
Is the Duo app going to drain my phone’s battery?
The Duo Mobile app does not significantly affect battery usage when operating in the background because it does not persistently query for authentication requests.
What if I don’t have a screen lock or passcode on my phone?
In order to add a device to support Duo logins, you will need to first set up a screen lock, passcode, or biometric security on your phone before authenticating to Augsburg University services.
What devices can I use with Duo?
Duo supports authentication through Android (8+) and IOS (11+) smartphones and tablets, as well as physical authentication tokens. The Duo Mobile app on smartphones and tablets is the easiest, quickest, and most flexible method to use and is therefore recommended. The other options are more difficult requiring manual generation and entry of a changing passcode, and also incur additional costs to the University upon each authentication.
Will Augsburg be making additional security changes?
Yes. Augsburg IT will continue to track cybersecurity trends and make necessary changes to help ensure your account remains secure.
I still need more help, who can I contact?
For students who need additional assistance with enrolling your device, using “Duo Mobile”, or with additional security questions, please reach out to the TechDesk at 612-330-1400 or firstname.lastname@example.org.
For faculty and staff, we encourage you to reach out to your LFC. Information about how to connect with them can be found at https://sites.augsburg.edu/it/get-help/faculty-and-staff-support-lfcs