Duo FAQ

What should I do if I see an unexpected Duo Push request?

If you receive an unexpected login request, you should select “I’m not logging in”.
If you are concerned that your account credentials may have been stolen, please reset your password and then contact the ITS Service Desk:
- Service Portal: https://csueastbay.service-now.com/sp
- Email: servicedesk@csueastbay.edu
- Phone: 510-885-HELP(4357)

Can I authenticate if I am traveling and don't have WiFi or cellular service?

As long as you have previously registered your smart device with Duo, you can generate a passcode and connect with Duo, using either the Duo Mobile app or by hardware token:

From the Duo Mobile app, tap the account you want to access and a six digit code will display. Depending on what device you are using, this may be a key symbol. Then, simply enter this passcode when you see the Duo authentication prompt.
From a hardware token, press the button and a six digit code will be generated. Enter this code to complete the authentication process.

I am not receiving a Push or call, what can I do?

You can open the Duo Mobile app and generate a 6 digit code for use with Duo authentication, as this works without cell or network service on the phone.

Obtaining a Passcode from the Duo Mobile App:

Open the Duo Mobile app from your mobile device.
In Duo Mobile, tap on the "Cal State East Bay" icon. You should see a six-digit code displayed.
Enter the passcode on the Duo screen on your computer to complete the Duo verification process to log in to the application.
- Please note that if your phone is set to "Do Not Disturb" or "Airplane" mode, you will have to manually open the Duo Mobile app to acknowledge a push event.

You can find more information about this at https://guide.duo.com/other-phones.

What is Duo Security?

Duo Security is a company that provides a cloud-based software service that utilizes two-factor authentication to ensure secure access to services and data.

What is Two-Factor Authentication?

Two-factor authentication provides a second layer of security to any type of login, requiring extra information or a physical device to log in, in addition to your password.

By requiring two different channels of authentication, we can protect user logins from remote attacks that may exploit stolen usernames & passwords.

The factors may include:

Something you know
- A unique username and password

Something you have
- A smartphone with an app to approve authentication requests

Something you are
- Biometrics - like your fingerprint

Learn more by clicking here for a two minute video, "What is Two-Factor Authentication?".

Why do we need two-factor authentication?

Login credentials are more valuable than ever and are increasingly easy to compromise. Over 90% of breaches today involve compromised usernames & passwords.
Two-factor authentication enhances the security of your account by using a secondary device to verify your identity. This prevents anyone but you from accessing your account, even if they know your password.

How will Duo change my login experience?

When logging in to an application that is protected by Duo, you will still enter your username and password. After inputting your login credentials, you will need to complete a secondary authentication step, in the form of a Duo Push from your smartphone, or by entering in a six-digit code. This takes only a few additional moments to complete but greatly enhances the security of your account.

What is Duo Mobile & Duo Verified Push?

Duo Mobile is Duo Security’s free app that allows you to quickly and securely approve a second-factor authentication request entering a three-digit code sent by Duo Verified Push.
With Duo Mobile & Duo Verified Push, there is no need to carry a bulky token or waste time manually entering in passcodes. Just authenticate right on your smartphone.

Learn more by clicking here for more information about Duo Verified Push.

What devices can I use with Duo at CSUEB?

Using the Duo Mobile app:
- Apple - iPhone, iPad, and iPod
- Android - cell phone and tablet

Hardware tokens

USB security keys (such as Yubikey)

Click here to find out the current software versions supported by Duo.

If I install Duo on my personal phone, does that give the University access to or use of my phone?

No. Duo Mobile does not have any more access to your phone than any other mobile app, and it cannot read your e-mail, track your location, or see your browser history. Duo Mobile also cannot remotely delete anything from your phone. During the installation of the Duo Mobile app, you will need to grant the app permission to send push notifications to your phone.

How can I receive a Duo hardware token?

What if I left my cell phone at home?

Please submit a ticket in ServiceNow to request a one-time Bypass Code that will allow you to access Duo-protected services. Or call the Servicedesk at 510-885-4357

What if I have a replacement/new cell phone?

My hardware token keeps declining my passcode. Why?

The hardware token creates an access code that lasts for 30 seconds. You will need to enter in the generated code before the 30 seconds passes.

If I am already logged into Duo to access one application, do I need to log in again to use a second application protected by Duo?

Do I need to log into Duo every time I step away from my workstation?

Once I successfully log into Duo, what happens if I try to use a different workstation?

The Duo system will only remember the last workstation you successfully logged in from, so you will be prompted to log in again with Duo if you move to a different workstation.

Why does my token only display "888888"?

Tokens are constructed to display a unique six-digit code upon every new button-press. If the button is held down too long, a string of eights will be displayed. Be sure to only press the button once, instead of holding it down, to generate a valid code.

If I already have a Duo account with another CSU, can I connect it with East Bay?

Following the East Bay enrollment process will update your existing Duo app setup and add the East Bay campus, so you can use the Duo app for both campuses and their respective protected applications.

Why is Duo telling me my device may not be secure?

Duo will analyze your device and let you know that software updates may be available. We encourage you to keep all of your devices, including cell phones, up-to-date as a means of enhancing data security. For more information on this topic, please visit https://www.csueastbay.edu/security/protect-yourself-from-phishing.html.

What if I am already using a different authenticator app (like Google or Microsoft)?

Some applications will allow you to run them under Duo rather than their default authenticator. For example, with Microsoft 365, when prompted to download the Microsoft Authenticator, select the "I want to use a different authenticator app" link and follow the steps as provided.

Duo says I'm locked out, what can I do?

Why does Duo log me out every time I attempt to log in?

Be sure to use the most updated software version of your operating system and your web browser. Also, some browser settings may block Duo from functioning correctly, so try a different browser than usual. Duo supports up-to-date versions of Chrome, Firefox, Safari, Edge, and Opera.

Why am I seeing the message “Access denied. Duo Security does not provide services in your current location” in the Duo Prompt?

In order to comply with U.S. regulations, Duo blocks authentications from users whose IP address originates in a country or region subject to economic and trade sanctions enforced by the U.S. Office of Foreign Assets Control.

Please contact the International Admissions Office for more information: iao@csueastbay.edu

Additional questions?

User guides for specific devices are maintained and updated directly by the vendor: https://guide.duo.com

iPhone: https://guide.duo.com/iphone
Android: https://guide.duo.com/android
Web browser: https://guide.duo.com/prompt
Token: https://guide.duo.com/tokens
Accessibility and Duo: https://duo.com/docs/accessibility
- Known accessibility issues

Please reach out to the ITS Service Desk with any questions about enrolling or using Duo:

Service Portal: https://csueastbay.service-now.com/sp
Email: servicedesk@csueastbay.edu

Can I add multiple telephone numbers/devices to my Duo profile?

You can add another phone line, as well as make changes to your devices, by visiting https://www.csueastbay.edu/duo and then clicking the "Enroll in Duo" button. Log in and click the "Add a new device" link to make your changes.
NOTE: These changes can only be done by using this application.