Two-Factor Authentication (Duo)

Effective Wednesday, January 21, 2026, Duo authentication via SMS text messages and phone calls will no longer be supported. This change is part of the university’s ongoing efforts to enhance security and protect users from increasingly sophisticated phishing attacks that target these less secure methods.

Recommended Authentication Method: Duo Mobile App Version 4.85 or Later

To ensure the most secure and user-friendly experience, we strongly recommend installing the Duo Mobile App on your iOS or Android device (e.g., smartphone or tablet). This app provides the optimal method for two-factor authentication and should be used as the primary authentication method by all users.

Please refer to the Duo Two-Factor Authentication Self-Enrollment Guide in the Knowledge Base for step-by-step instructions.

Using Duo Push for Authentication

Once the Duo Mobile App is installed, select “Send Me a Push” when prompted. This option offers the fastest and most seamless authentication experience.

The Duo Mobile App is the preferred solution for multi-factor authentication (MFA), combining enhanced security with ease of use. Features such as Remembering authentication device allow users to bypass repeated authentication on trusted devices for a specified period, while Duo Push enables quick login approvals with a single tap.

Login Process Overview

Each time you log in to a university system using your UC username and password, Duo will send a push notification to your mobile device. Simply approve the request to securely access the system. Security reminder: Click "Deny" any Duo authentication requests you did not initiate yourself.

Device Trust Settings

During authentication, Duo will ask whether the current device is yours. Please choose the appropriate option:

• Yes, this is my device: Select this if you are using a personal device. It will be marked as trusted, reducing the frequency of authentication prompts.
• No, other people use this device: Choose this for public or shared devices. Duo will treat it as untrusted and require more frequent authentication to protect your account.

Once you have enrolled in Duo using the Duo Mobile App we recommend setting up a secondary authentication method. There are several additional methods of Duo authentication. After installing the Duo Mobile app, these secondary authentication methods may be used at times when you do not have access to your mobile device.

• Platform Authentication (Fringerprint / TouchID)
• Fido Security Keys, commonly known as YubiKeys

Platform authentication allows you to log into your laptop or your desktop without the need for access to your phone. For the best user experience, it is strongly recommended to set up Duo Mobile App on your phone first, then use the following as secondary authentication methods.

ChromeOS device

Here are the steps to configure Platform Authentication on a Chromebook:

• Using your Chromebook, log into a UC resource like mail.uc.edu with your normal UC username and password.
• At the Duo prompt select "Other options".
• Select "Manage devices" from the list.
• You must now verify your identity using one of the authentication methods you already have set up such as Duo Push.
• On the device management portal page select "Add a device".
• On the add a device prompt, select "Device Verification", then select continue.
• Now you will be prompted to verify your identity.
  • If the device has biometric such as fingerprint reader, you will be prompted to use that method.
  • If your device does not have biometric you will be prompted to enter the device password. Note this is not your UC password, it is the password that you use to log into the Chromebook.      
• Click Continue and click "Back to Login".
• You will be prompted for your Chrombook password or fingerprint.
• Your device should now be configured to authenticate with Duo.

Apple Mac and iOS device

• Face ID and Touch ID on compatible iOS and iPadOS devices
• Touch ID on compatible macOS devices

Windows

• Windows Hello on compatible Windows devices

Android 

• Android biometrics, such as Pixel fingerprint or facial recognition, or Samsung fingerprint or facial recognition.

A security key is a physical hard token device that plugs into your USB port. When tapped or when the button is pressed, the security key sends a signed response back to Duo to validate your login. Duo uses the WebAuthn authentication standards to interact with your security keys. You may also see WebAuthn referred to as "FIDO2". A common brand name for these security Keys is YubiKey.

Fido Security Keys, commonly known as YubiKeys or Roaming Authenticators

•  FIDO2 security keys

If you are a student in need of accessibility accommodations, please contact the Accessibility Resources Office. You can find more information and submit requests at: https://www.uc.edu/campus-life/accessibility-resources.html.

Faculty and Staff seeking accommodations should reach out to their department's Human Resources contact for assistance.

Before February 2, 2026 please ensure that you update to the latest version of the Duo Mobile app. Beginning on that date, versions earlier than 4.85 will no longer be supported for authentication.

To avoid any disruption in service, visit the Apple App Store or Google Play Store to download the most recent version of Duo Mobile.

Apple iOS Devices

• Apple iOS 16.0 is the minimum supported version of the Duo Mobile app.
• The current supported version of Apple iOS is 26. We recommend updating to the latest version possible on your device.

Android Devices

• Android 11 is the minimum supported version for Duo Mobile app, but Android 11 is End of Support from Google and we strongly encourage users to update.
• The current supported versions of Android are 13, 14, 15 and 16. We recommend updating to the latest version possible on your device.

Recommended Versions

To ensure the best experience and continued security, Duo Mobile supports the following operating system versions:

• Apple iOS 26
• Android 15, or Android 16