Two Factor Authentication is a security technique that supplements your SSO password – something you know – with a second, tangible identification factor – such as your phone, which is something you have.
SSO’s two-factor process is implemented in partnership with Duo Security. Using Two Factor Authentication in SSO means you will be prompted by Duo to acknowledge your login requests with your chosen method:
Remember me option
Note that you can choose to have your computer remember your two-factor login using cookies. This means you will not have to utilize the Duo prompt for the selected time period. You can select this option multiple times.
First Time Users
Click Add a new device and follow the instructions provided. You will be asked to verify your identity. It is recommended to provide your landline phone number for this initial verification process.
Next you will be prompted to select a device to add as your default method. You can add additional devices later and remove as needed.
Select the option you prefer. You can enroll multiple devices and types of devices. Typically users will use their office phone (landline) first and then their mobile phone.
- Mobile phone – Uses the free Duo app* to send you a notification (push) or phone call for identity verification
- Tablet – Uses the Duo app* to send you a notification (push) for identity verification
- Landline – Uses a phone call to your landline for identify verification
- U2F token – Uses a special hardware device (not currently available)
*Searchable using the app store on your Smart device
Follow the directions provided for the type of device you selected.
Is Two Factor Authentication Required?
It is required for all employees and retirees of the A&M System to use Two Factor Authentication. While some other users who are affiliated with the A&M System are not required to use Two Factor Authentication, it is strongly recommended that they do so.
Alternate Logins and SSO Two Factor Authentication
Note that SSO’s Two Factor Authentication only applies when logging into SSO using your UIN. The alternate login applications that can be used with SSO will not:
- use your SSO two-factor enrollment selection
- access your two-factor device(s) registered with Duo on behalf of SSO