Duo - Using NetID Two-Factor Authentication

Overview

Duo NetID Two-Factor Authentication provides an additional layer of security to Texas A&M's Central Authentication System (CAS) and other services that use your NetID and password.

If you experience difficulty using Duo 2-Factor security when accessing the Texas A&M University System Single Sign-On system at https://sso.tamus.edu/, please contact your SSO Central Administrator. If you are unsure who your SSO Central Administrator is, a list is available at http://it.tamus.edu/sso/central-admin-list/.

Using Duo NetID Two-Factor Authentication

After entering your NetID and password into the CAS login window to access a Texas A&M University resource, you will be presented with the Duo two-factor window. On this window, you can choose to authenticate by receiving a Push notification to your mobile device, receiving a phone call, or by entering a passcode. We recommend having Duo send a Push notification to the Duo Security Mobile App on your smartphone to authenticate.

You will also have an option for your device (phone, tablet, computer, etc.) to be remembered for five days. During those five days, you will not be prompted to use two-factor authentication, and you will only need your NetID and password to log in. After five days, you will again receive a two-factor prompt where you can choose to be remembered for another five days.

Note: You should never use the Remember me for five days option if you are using a shared computer.

Duo Security mobile app via Push

1. Click on Send me a Push.
2. An authentication request will be sent to the Duo Security mobile app on your mobile device.
3. In the Duo Security mobile app, click Approve.
4. The mobile app will display an approved message, and your login process will be completed.

Note: If you have set up Duo to default to a Push notification, you will be sent a Push notice automatically without needing to manually press Send me a Push.

Duo Security via telephone

1. Click on Call Me.
2. Duo Security will call the telephone number listed under Device at the top of the screen.
3. You will be prompted to press * if the call is unexpected and likely to be fraud. Pressing * will record a fraudulent login attempt on your account.
4. You will then be prompted to press 3 to authenticate.
5. If you have pressed 3, your login process will be completed.

Note: If you have set up Duo to default to telephone call notification, you will receive a telephone call automatically without needing to manually press Call me.

Duo Security via passcode

1. Click on "Enter a Passcode".
2. For the passcode, you can use either a YubiKey or the Duo Security mobile app.
   1. To use a USB YubiKey:
      1. Insert the USB YubiKey into an available USB slot on your computer.
      2. Press the contact pad.
      3. A randomly generated passcode will be filled into the black on the Duo Security page, and your login will be completed.
   2. To use the Duo Security mobile app:
      1. Open the Duo Security mobile app and press the key symbol next to the Texas A&M University entry.
      2. Enter the six digit code into the blank on the Duo Security page, and your login will be completed.
   3. To use SMS:
      1. After you have authenticated through CAS, a text message with a one time passcode will be sent to your phone.
      2. Enter the passcode into the blank on the Duo Security page, and your login will be completed.

If you have any further questions, email helpdesk@tamu.edu or call us at (979) 845-8300.