Universal 2nd Factor (U2F) allows users to tap a USB device to log into their accounts securely. The device protects private keys with a tamper-proof secure element (SE).
No texts? No problem. Duo will call your cell phone, landline or car phone. All you need to do is answer and press a key to quickly authenticate.
Duo uses HOTP to generate codes for all application integrations. Duo Mobile also generates time-based one-time passcodes (TOTP) for third-party sites that support it.
Duo Push lets you quickly approve login requests via your smartphone and smartwatch using the Duo Mobile app. Just tap “Approve” and you’re in.
We strongly recommend using Duo Push as your second factor, a more secure method that can protect against man-in-the-middle (MITM) attacks. Duo Push is resilient against credential-stealing attacks, including bypasses of one-time passwords.
We support all OATH HOTP-compatible tokens and YubiKeys for users that still need to use physical hardware tokens.
No Internet? No problem. Receive passcodes on your phone by text message, and authenticate by typing them into your secondary login prompt.
We provide bypass codes, useful for lost devices or to provide temporary, single, event or time-based access for contractors.
“The thing that I personally love about Duo is, the interface is absolutely slick. You just can’t beat the fact that it’s one touch, one button, one press.”
“It has been very easy to direct users to download and use the Duo-Push phone app. Management is easy using Duo’s web interface and we can gain insights into usage with the reporting tools.”