Multifactor Authentication
About DUO Multifactor Authentication at KU
Data breaches make headlines almost daily. The most common point of entry for attackers is stolen credentials. Multifactor authentication (MFA) strengthens protections by requiring an additional layer of security beyond username and password when accessing systems. KU has partnered with Duo to provide multifactor authentication on the Lawrence/Edwards campus.
Duo multifactor authentication is required for:
- All KU faculty and staff
- All KU students
- Sponsored Temporary Account holders
What is Multifactor Authentication?
MFA is the process of confirming a person’s identity using multiple pieces of evidence to verify who they are when accessing systems. This evidence is typically something they know, such as a username and password, and something they have, such as a device with a code or app.
How Does Duo Work?
Once you are enrolled and have set up Duo, log in to any KU system via single sign-on (SSO) as usual. After entering your KU Online ID and password, you will be prompted to verify your identity using Duo. Confirm your identity through the Duo app, and you will be logged in. It’s that simple! Using the Duo app on your smartphone is the easiest and most convenient way to confirm your identity. If the mobile app is not an option for you, please contact your IT Support Staff or the IT Customer Service Center to discuss your options.
Beware of Fake Approval Requests!
If you receive a Duo notification that you didn’t initiate, it probably means your KU Online ID and password have already been compromised and a hacker is trying to access your account. Contact KU IT immediately at 785-864-8080!
- DO NOT approve any Duo push or phone call notification you receive unless you are actively logging in to a system.
- NEVER provide a Duo code to anyone who requests one. Duo codes are only to be entered into a verified KU log in page. When logging in, double-check the URL of page to ensure it is an authentic KU website (i.e., URL ends in “ku.edu”).
Why is KU Using Multifactor Authentication?
Collectively as an institution and as individuals we have a legal and ethical obligation to protect private, confidential and sensitive data to the best of our ability. In an increasingly complex digital world, username and password alone are not enough to stop hackers and data thieves. Multifactor authentication using Duo gives KU an affordable and simple way to ensure all faculty and staff can do their part to protect their own data, as well as that of colleagues, students and other stakeholders.
Can I Use Duo on My Personal Accounts?
Absolutely! We encourage you to use multifactor authentication on any personal accounts (e.g., banks, credit cards, social media, etc.) that provide the option. And, in most cases, you can use Duo to access those accounts. Duo provides information for using the app with other online services and accounts.
More Info from Duo
