DUO Two-Factor Authentication

Overview

IMSS offers Duo multi-factor authentication. While some departments or services already require Duo, others can use Duo for Caltech services upon request. Multi-factor authentication protects against phishing, social engineering and password attacks by requiring multiple methods (or factors) to verify your identity. These factors include something you know - your access.caltech username and password, plus something you have - Duo smartphone app or hardware token to approve authentication requests. 

First decide which multi-factor method, or combination of, that you want to use:

Duo Mobile App

  • This app is installed on your smartphone to generate passcodes for identity verification
  • You must always have your phone to access the Duo-enabled service

YubiKey

  • Yubikey is a USB device which enters the passcode automatically when pressed. IMSS offers these at a 20% educational discount:
    • $32 for the USB type A (standard)
    • $40 for the USB type C

‚Äč

  • You must always have your hardware token in order to access the Duo-enabled service (unless you are also using the mobile app)

Hardware Tokens

  • If you have an existing hardware token or have purchased your own, you will need to provide the serial number or present the token in person to Information Security staff for setup
  • You must always have your hardware token in order to access the Duo-enabled service (unless you are also using the mobile app)
  • Note that users may have more than one hardware token

GET STARTED WITH DUO

DUO Two-Factor Authentication