New staff and students are automatically enrolled with Duo, a two-factor authentication system. Duo requires set up before you can log in to any protected systems (eg Office 365, Minerva, etc.).
Two-factor authentication (2FA), also known as multi-factor authentication (MFA), improves security by requiring extra information or a physical device, in addition to your password, to login. It is the same kind of system that is used for access to services like online banking, or Google and Amazon.
Rather than solely relying upon your password (something you know), you also need another factor (something you have). This second factor is typically an app on your phone. This means that even if someone knows your password they won’t be able to access your account. It only takes a few extra seconds to login with the extra factor (app), but your account is much more secure, as seen here:
Before setting up Duo, you will need your University credentials, including username and password.
Watch this video quick start guide, or follow the steps below to enrol. If you can't see the video, view it directly on Microsoft Stream.
(If you wish to learn more about Minverva, you can do so here: https://www.leeds.ac.uk/vle/)
Important: The images in this article where 'University of Leeds' is indicated relate to the University 2FA website and not your device.
In the next section you will be asked what type of mobile device you are adding. The following instructions are for a mobile phone (the recommended option) but the process will be similar for other devices, just follow the prompts on screen.
Important: Using DUO Mobile is the the recommended way to authenticate. For information about using other authentication methods or device options, see Duo - choosing and using your authentication device.
Please look for the Duo Mobile logo to confirm you are downloading the correct app. There are other apps with similar names.
Important: If you are in China or travelling to China please read this information about downloading the Duo Mobile app.
Check the Duo guide on the Duo website for the latest information on which operating systems are supported. If you have an older operating system you may be able to install the app, but will receive a security warning when you use it.
2. Select the appropriate device and click 'Continue'.
3. If you selected 'Mobile phone' you will be asked to enter your mobile phone number and click 'Continue'.
4. If you are adding a phone or tablet, you will be asked what type of phone or tablet you are using. Select your type of phone and click 'Continue'.
1. You will be asked if you have the Duo Mobile app installed. This is the easiest and recommended way to authenticate. If you have not already done so, install Duo Mobile on your device, then click 'I have Duo Mobile'.
2. A QR barcode will then appear on the University of Leeds website.
3. Open Duo Mobile on your device, tap the '+ Add' button, Select 'Scan QR code' and scan the barcode from the University of Leeds website (you will need to give Duo Mobile permission to access your device's camera to do this). Alternatively click on the link to 'Email me an activation link' instead in the window showing the barcode (you may need to scroll down to see the link). You will then receive an email, which you should open on your device and click the link to activate Duo Mobile.
4. When you have successfully activated your device a green tick will appear over the barcode. Now skip to the 'Set your preferences' section below
1. Click on 'Text me' and a verification code will be sent to the phone number you have entered. You should receive the verification code to your mobile phone within a couple of minutes.
2. When you have received it enter the code click 'Verify', then 'Continue'.
You will then be able to set your preferences for what happens when you login to a system protected by Duo two-factor authentication.
You can choose to either:
You can change these settings later whenever you are prompted to authenticate. See the article 'Duo Mobile - Choosing and using your authentication device' for further information on: using Duo Mobile, 'push notifications', 'switching devices', passcodes and 'hardware tokens'.
You have now finished the set-up process. You will only be prompted for an authentication request when a protected system (eg Office 365 or the Windows Virtual Desktop) requires you to enter your password.