Multi-Factor Authentication (Duo)

On this page: Get Started with MFA | MFA FAQs | Notice a New MFA Design? | Use Duo Push

No Wi-Fi?

You can still use the Duo Mobile app even if your phone can’t connect to Wi-Fi,  or you do not have a data plan, by using a passcode to authenticate. To generate a passcode, tap the Duo app, then tap Passcode to get the code, then copy and paste the code next to Enter a Passcode on the authentication screen. Read Using the Duo Mobile app to generate a passcode.

Additional MFA FAQs

• Responding to Fraudulent /Unsolicited MFA Requests
  
• How can I use NYU MFA while traveling?
• How do I report a lost or stolen multi-factor authentication device?
• Using the “Trust Browser” or "Remember me" feature to stay MFA-authenticated for 7 days
• Multi-Factor Authentication tips, including setting a default device and Push notification
• Troubleshooting Duo Push notification issues on iOS devices
• Troubleshooting Duo Push notification issues on Android devices
• Using an Apple Watch with Duo
• Are the Duo prompt and the Duo Mobile app accessible?

Browse all MFA Knowledge Base articles

Watch the video above for a quick overview of the new experience, and see these knowledge articles for step-by-step instructions and video demos: 

What Changed?

• The first time you log in after October 27, you’ll be prompted to complete a few quick setup steps to link your NYU account
  
• The NYU MFA login prompt has been updated to the latest design from Duo, known as the Universal Prompt. It is more secure and offers better accessibility and easier device management
• “Remember me” has become “Trust browser?” and your MFA authentication can now last for 7 days if you use the same browser
  
• After your first login, Duo notifications will automatically be sent to the last MFA method you used
  • You’ll be able to select “Other options” anytime to pick a different MFA method (listed from most to least secure) or add a new device

Why?

NYU made this change because Duo is discontinuing its support for the Traditional Prompt. The Universal Prompt is also more secure and provides a better user experience.

Have a Question?

Check out the videos and knowledge articles on this page, which have been updated with support for the new Universal Prompt design. If you need additional support, contact the NYU IT Service Desk.

The MFA Phone Call (“Call Me”) Option Was Eliminated

On Thursday, October 6, 2022, phone calls were eliminated for all NYU community members (the “Call Me” option in the Duo prompt and “phone1” in NYU VPN) as a method of MFA authentication. Instead, everyone should use Duo Push – the easiest, most secure way to authenticate. To regain access, call the IT Service Desk or your school/unit help desk, then switch to Duo Push.

Use Duo Push

To ensure uninterrupted access to your NYU account, and to protect your data and the availability of NYU’s network, switch to using Duo Mobile with the Duo Mobile app and in NYU VPN.

• How do I authenticate with Duo Mobile?
• How do I use Duo Push with NYU VPN on my device?
• Procuring hardware tokens and security keys for MFA
• Switching from a phone call to Duo Push    
• If you don’t have a mobile device and can’t use Duo Push, switch to one of these alternative methods to authenticate.