FAQs

DUO was selected based on its security controls, accessibility options for persons with disabilities, as well as its ability to be used with a variety of applications and technical environments. It was chosen by the CSU, and CPP is one of many campuses implementing it.

CPP provides three options for 2-Step Authentication: the DUO smartphone application, a call-back phone number or a hardware token. If you are uncomfortable or cannot use your own device with the smartphone application or call-back option, you can request a hardware token by contacting the IT Service Desk. Allow 7-10 days for token request to be delivered from date of request.

Cal Poly Pomona takes seriously the security of your information, including protecting the confidentiality, integrity and availability of campus information. 2-Step Authentication, also called multi-factor authentication, has become a best practice for many industries to improve the security of information technology, data and user accounts. Additionally, any information technology application or service purchased by the CSU and the campus must comply with the CSU terms and conditions including CSU general provisions for information technology acquisitions and references to data confidentiality and security of information.

DUO is a reliable and secure service for 2-Step Authentication. There are multiple methods and contingencies in the event that you lose access to your primary 2-Step Authentication device.

You are encouraged to enroll more than one device or method in 2-Step Authentication. For example, in addition to enrolling your smartphone, also enroll a tablet or register for a call-back to a phone number.
DUO offers ways to securely use backup features on your device and instantly restore the application from one device to another.
The IT Service Desk can provide one-time use-codes during normal operating hours.

In March, a feature will be added that will allow for emailing a one-time recovery-code to a pre-registered personal email address.

Cal Poly Pomona respects your privacy and is committed to protecting it to the extent possible, subject to applicable state and federal law, through compliance with privacy policies and this Privacy Notice. Although our university is a not-for-profit institution and not governed by the California Consumer Privacy Act (CCPA), we generally operate within the spirit of the act. Additionally, any information technology application or service purchased by the CSU and the campus must comply with the CSU terms and conditions including CSU general provisions for information technology acquisitions and references to data confidentiality and security of information.

No, not at this time. Currently, the campus is supporting IOS and Android as authentication devices, as well as the phone number Call Back feature and a campus-provided hardware token.

Yes. 2-Step and the Duo application provides offers multiple approaches that may address your travels. The Duo application works like any other smartphone phone application abroad. With Wi-Fi or cellular connectivity, you will continue to receive DUO push notifications. The Duo application can also generate a 6 digit “passcode”, which does NOT require cellular or internet connectivity. Additionally, if you use a Hardware token, the Hardware token generates a passcode, which requires no internet connectivity. A hardware token can be requested at the IT Service Desk .

Three options are available for 2-Step authentication.

Phone call-back – Duo will call you at the phone number of your choice. It can be a land-line or cell phone number. If this is your primary method of authentication, it should be a phone that is nearby.
Hardware token, which can be requested by contacting the IT Service Desk.
Smartphone/tablet application. You can enroll more than one device.
- The application allows for a quick “click” for authentication
- OR the application will generate a 6 digit “passcode”, which does NOT require cellular or internet connectivity

“DUO provides a “remember me” feature allowing your 2nd-step authentication to be remembered for a period of time. At CPP, you can be remembered for up to 14 hours when that feature is checked. “Remember me” requires the use of cookies and is per browser. So, if you clear or can’t save cookies, then Duo is unable to “remember” and you will be prompted each time.

In the meantime, if you have questions with how to use 2-Step Authentication, direct them to the IT Service Desk.

If you have other questions about the campus initiative that requires 2-Step Authentication to access campus online services, please direct them to Office of the Chief Information Security Officer at ciso@cpp.edu.

FAQs

How was DUO selected? Is it secure?

Am I required to use my personal device to use DUO? Are there other options?

Is my personal information safe?

Is DUO a reliable service? Is there a risk that I won’t have timely access to my education or work?

Is using DUO or 2-Step Authentication a violation of my privacy?

Can I use a Mac (MacOS) or a Chromebook as an authentication device?

Will 2-Step Authentication be available when I travel?

What options do I have if my phone will not support the DUO application?

How can I reduce the number of time 2-Step prompts me to authenticate?

I have more questions. Where can I ask them?