Posts Tagged: CISO
Coming Jan. 13: Changes to UC ANR SSO login
To comply with UC-wide policy to protect UC ANR and its employees' data, IT is taking steps to strengthen security for logins. The following changes to the Duo authentication process will go into effect on Jan. 13, 2025.
Please ensure you are using:
Duo Mobile 4.16.0 or later on Android devices
Duo Mobile 4.17.0 or later on Apple devices
How to update
- Open the app store on your device (Google Play Store for Android or Apple App Store for iOS).
- Search for "Duo Mobile" and select the app.
- Tap "Update" to install the latest version. (If the "Update" option is not there, you are already updated.)
What's changing
IT will be enabling Duo's Verified Push for UCANRSSOlogins. When youlogin using UCANRSSO (Fig. 1), Verified Push will require that you enter a code into the Duo Mobile app.
After you enter yourusername and password, a three-digit code will be displayed in your browser (Fig 2).
Duo Mobile will prompt you to enter the code and select verify to continue (Fig. 3)
After your device is verified, you can choose "Yes, this is my device" (Fig. 4) to stay verified for 16 hours. During this time, Duo won't ask you to verify again as long as you're using the same browser.
Note: Applications using UC DavisSSO (Fig. 5) will not be impacted by this change.
Need help?
If you have problems logging in, contact the Help Desk at help@ucanr.edu or (530) 750-1212.
Jaki Hsieh Wojan
UC ANR Deputy Chief Information Officer & Chief Information Security Officer
Duo login screen change coming April 7
Dear ANR Community,
Duo, UC ANR's multi-factor authentication app, is updating its login screen on April 7, 2024. UC Davis made this same Duo prompt change late last year.
What is changing?
• The new Duo login prompt starting Sunday, April 7, 2024.
• There is no action required on your part as this change will happen automatically. The Duo app does not require an update.
As a security protection, IT is reminding you to approve only login attempts that you have initiated and reject authentication requests that you are not expecting.
The Duo login prompt will change from this:
To this:
If needed, the "Other options" link allows you to choose other options as needed (e.g., using a texted code or a bypass code).
Depending on which option you chose, Duo may ask if the device you just used to authenticate is yours. Only click "Yes, this is my device" if the device is not shared with others. Clicking yes will prevent Duo from asking again on your device for 14 days.
Jaki Hsieh Wojan
Chief Information Security Officer