Duo MFA: Initial Set Up

okta MFA Duo Authentication internet

Multi-Factor Authentication (MFA)

Multi-factor authentication (MFA) is used for extra account security. It requires a user to provide two or more methods of authentication to log into an account — most commonly used are password + email verification or password + phone verification. MFA is required by NMH for account security.

Duo MFA

Duo is a software-based access security platform. In this article, we’ll walk through the steps to enable Duo MFA on your NMH Okta account. They also offer an excellent guide of their own. NMH IT strongly recommends downloading the Duo Mobile App before starting the setup process. The Duo Mobile App is available in the Google Play store and the Apple App Store.

Turning on Authentication

Please have your cell phone handy before starting this process, or alternatively, a phone that you will likely have near you while working. We do not recommend using your work/desk phone. NMH IT will not share this telephone number with anyone and it will not become part of your NMH profile.

These instructions begin after you log in to Okta and are prompted to set up Duo.

1. Depending on your operating system and device, you may see a slightly different screen. Click Configure Factor, then Enroll, then Get Started

2. Accounts that are linked with Duo may use several ways of authenticating. We recommend using the Duo Mobile App on your mobile phone. To do so, click on Duo Mobile on the screen that prompts you to add a device.

Users of an Apple MacBook can use Touch ID to authenticate in Duo as well, to do so please follow these directions after you complete the Duo App setup.

3. You’ll be asked to enter your phone number. You do not need to add parentheses or dashes. Once you enter your phone number, click Continue. There will be a second screen purely to confirm your phone number. Verify your number and then click Yes, it's correct.

4. Next, you will confirm the phone number belongs to you. Duo will send a passcode to your phone via text message, and you'll enter the passcode into Duo setup.

5. You may be prompted to download the Duo Mobile App onto your phone, or you may just see a QR code on screen to activate your Duo account.

You’ll be able to find the app in the Google Play Store or the Apple App Store. When downloading, ensure that you’re downloading the correct Duo app. Verify the app logo against the logo on your computer screen if uncertain. Downloading the Duo Mobile App is free.

6. [On your phone] If you already have Duo installed because of another institution, or the QR scanner does not come up automatically in the app on your phone, click on the +Add button in the top right.

7. Choose Use QR code at the top of the following screen and point the camera at your computer to activate your account. The QR code on your computer screen will show a green check to indicate success. Note: your phone needs an internet connection for this step to work. You can use mobile data, or, if you're already on an NMH network, be sure you've registered your phone.

Once the QR code has been scanned, the Duo mobile app will ask you to name the account. It will be named Northfield Mount Hermon by default. Congratulations, your phone is now linked to MFA.

7. Duo will ask you to add another device (which you can skip for now) and then prompt you to log in.

8. You will now log in for the first time. Duo will generally default to sending a push notification to your phone for authentication. When you recieve the notification on your phone, click Accept. You will also sometimes get a question about the type of device you're using.