1. Home
2. Security
3. Duo Security Multi-Factor Authentication
4. User Guide

User Guide

Duo Multi-Factor Authentication (MFA)

Background

Emory University and Emory Healthcare use Multi-Factor Authentication (MFA) to help protect users, data, and IT systems against cyber threats. MFA is managed by Emory University’s Office of Information Technology (OIT) in partnership with Emory Digital. Emory uses Duo Security as its MFA platform, with Duo Verified Push as the primary recommended authentication method 

Using Duo Verified Push 

The following example workflow shows the new Verified Push experience while accessing a Microsoft application, such as web-based email. Your workflow may vary for other applications, but the new Verified Push experience should be the same. 

1. Enter Network ID and Password to sign into a Duo integrated application (such as http://email.emory.edu).

2. If this prompt appears, select “Continue”.  Emory Healthcare users will see “eushc.org” rather than “emory.edu”.

3. Select “Continue” to proceed to the Duo verification.

4. A 3-digit verification code will appear, and you'll get a push notification on your Duo mobile app to enter this code. 
   
   
5. Enter the verification code on your Duo mobile app when prompted. 

6. An error message appears if the code is incorrect.

7. If you are using an iPhone/iPad and have Microsoft Authenticator installed on your device, then you will need to confirm that this is your device on the Authenticator application as well. Open the Microsoft Authenticator app and click on “Unlock” when it prompts you to. 

8. If asked, confirm if this is your device or a public device on Microsoft Authenticator. Only click “Yes” on personal devices.

9. 9. Continue to stay signed in if it is a personal device. This reduces the number of times you are asked to sign in. Do not select this option on a public device.

10. 10. You may see this prompt on other devices; click “Continue” and repeat the steps above. 

Application Specific Caveats: 

My Power Automate flows are not working anymore, how do I resolve it? 

You will receive a pop-up requesting that you reauthenticate your connections.  

After opening Power Automate, navigate to Connections 

Click on reconnect under the Status column and follow the prompts to reauthenticate.  

FAQs

It is strongly recommended for all employees & students to use the Duo application on their personal device of choice because it’s free, secure, and well-supported on most smartphones and tablets. Duo Mobile provides the easiest login experience using Duo Verified Push or passcodes. You can follow the enrollment steps here: Duo Mobile Enrollment Guide 

2. What personal data does Duo Mobile have access to on my phone? 

Duo Mobile app is designed with privacy in mind. The app cannot see your contacts, read text messages, access your photos or files, erase your device, or view information about other apps. It can only use your camera to scan a QR code during setup (if you grant permission). Duo also does not track your location. The only information it stores is the service accounts you explicitly add — and even then, it only retains the name of the service, not personal data. Learn more at: Duo Mobile Privacy Information 

3. What if I don’t want to use the Duo Mobile app on my personal device? 

If a user does not want to use a personal device for their MFA or any of the other free options provided by Emory, the user will need to get and use a YubiKey hardware token for access. For more information on Emory approved YubiKeys and related guidance: Emory YubiKey Guidance.docx 

If needed, the University Service Desk may be reached at 404-727-7777. Emory Healthcare Service Desk, 8-Help, may be reached at 404-778-4357.