Duo Authentication
As part of Clemson University’s continuing commitment to protecting its community of research, faculty, staff and students, the University has implemented two-factor authentication for various campus systems such as Office 365, including email, iROAR, Canvas and more.
What is 2FA?
Two-factor authentication (2FA, for short) asks individuals for a secondary confirmation of their identity at log in using a physical device in their possession (app, text message or phone call). Passwords are essential for security and privacy, but they are often not enough. Two-factor authentication requires something you know (your Clemson password) and something you have (like a mobile phone, landline phone or the Duo smartphone app) as an added layer of security to prevent anyone else from accessing your account. Two-factor authentication is the most effective method of account takeover prevention, helping to protect both you and the Clemson community. Clemson University uses the Duo Security application to do two-factor authentication.
What are the benefits?
Two-factor authentication through Duo will not only help secure the campus network, it will also ensure only authorized users can access critical information, such as paychecks or other sensitive information. A handy comparison would be a debit card that can only be used with a corresponding PIN. If someone gained access to your password, two-factor authentication would provide added protection. In addition to easy enrollment on a device you already have, Duo’s secure cloud-based environment meets all federal and industry compliance regulations as well.
How does it work?
When you login to Peoplesoft, the Virtual Private Network, or other services requiring two factor authentication, you will start with your Clemson credentials. Then you will also be prompted to use Duo to confirm your identity by using one the following methods you choose:
- Sending a Push notification to the Duo Mobile app on your smartphone that you acknowledge to confirm your identity
- Use Platform Authenticators which are authentication methods built into the device you use to access services and applications protected by Duo. Examples of platform devices would be Touch ID on Mac, Face ID on an iPhone, Windows Hello, and Android biometrics.
- Entering a code from your Hardware Token (Yubikey) on the Duo Authentication when prompted
What if I deleted the app or got a new smartphone?
With Duo’s self-enrollment portal, you can reactivate Duo on your phone with a few steps. If you have a new phone number and your old number no longer works, you will need to contact the CCIT Support Center. If you have the same number, you can check out a step-by-step reactivation guide here.
What if I’m traveling internationally or don’t have access to the Internet?
If you travel internationally and need access to Clemson protected resources, the Duo app is available for smartphones or tablets as long as you have Internet services. Please note that if you’re traveling internationally (or have an international phone number) and you are using text messages as your method of two-step verification, you may be subject to your carrier’s roaming charges for SMS messages. Use of SMS is not recommended for international travelers. If you do not have a smart phone or tablet available to utilize the Duo Mobile App, please contact CCIT Support before your trip for information on a Duo Token or adding a temporary bypass code to your account.
Does it protect my email?
Yes, two-factor authentication will help prevent unauthorized access to your account should your login and password be compromised. Learn more here.
What if I have more questions?
Please check out our two-factor authentication FAQs here. If you have a question not listed there, please contact CCIT Support.