Deploying Duo

If you are the administrator of a Caltech-owned system and would like to implement Duo multi-factor authentication to protect access to that system, IMSS can help.

Supported services

• Windows (local logins, RDP connections, and/or credentialed UAC requests)
• Linux/Unix (local logins, SSH connections, and/or sudo requests)
• Other Duo integrations (see Duo Documentation for a complete lisit)

Getting started

• For Windows and Linux integrations, local usernames on your system should match access.caltech usernames. This is necessary for a smooth setup and low maintenance deployment. Please discuss this with Information Security if you have any questions or concerns.
• When you are ready to begin, email security@caltech.edu with the following information:
  • Duo integration type (e.g. Windows, Linux):
  • Number of systems you plan on deploying Duo on:
  • Descriptive name of the system or group of systems:
  • List other contacts responsible for these systems:
  • Confirm whether the usernames on these systems match each person's access.caltech username:
• Information Security will respond with a secure link using Caltech 1Password containing a set of Duo API keys. If you have not yet used Caltech 1Password, you will first receive an invitation to sign up for an account.