2-factor enrollment is required to log into many Virginia Tech Web-based systems. To use these Web sites and services that use the Login service, you are required to authenticate with a second factor.
An SMS passcode is a unique 6-digit number that can be sent to your mobile device or cell phone via SMS text message. You can use this SMS passcode as your second factor when authenticating. This can be useful as a backup second factor. In other words, when prompted to authenticate with your second factor, you can enter one of the SMS passcodes you received earlier. When you receive the SMS passcodes, save them in a safe place for later use.
You can request a new SMS text message containing a new set of codes be sent to you at any time. At that time, previous codes sent via SMS text message will expire.
To get 10 passcodes via SMS text message to your enrolled cell phone (flip phone, "dumb" phone) or smartphone:
Start logging on to the service that you want, and when prompted, enter your VT Username (PID) and passphrase.
When prompted to select your second factor, from the drop-down, select a device that can receive SMS text messages. (Your Virginia Tech desk phone will not work.)
Click Enter a Passcode.
Near the bottom of the screen, in the blue bar, click Send codes or Text me new codes.
On your phone, when a text message that starts with "SMS passcodes:" arrives, open that text message.
The text message will contain 10 different passcodes that are each 6-digits long.
In the Web browser, in the Enter your passcode text box, type one of the 6-digit passcodes from the text message you received. (These codes do not expire until you use them to authenticate. Once you use one of the codes, you cannot use that same code again. You do not have to use the passcodes in the order given, but it may be easier to remember which ones you have used if you do use them in order, because the first digit of each of the 10 passcodes is sequential. For example: 1XXXXX, 2XXXXX, 3XXXXX. When you use the tenth and last passcode, you will automatically receive an SMS text message with an additional ten passcodes.)
Click Log In.
You will now be logged on to and transferred to the service to which you were going.
4Help recommends you write down all of the passcodes on paper and store the paper in a secure place, so that you can use those codes as a backup second factor if other second factor devices fail or are unavailable.
Start logging on to the service that you want, and when prompted, enter your VT Username (PID) and passphrase.
When prompted to select your second factor, from the drop-down, select the device that you want to be called and that you can answer.
Click Call Me.
Duo will call your phone. Your phone will ring. When you answer the phone you will hear a prerecorded message from Duo. When the recorded message prompts you to “Press any key on your phone to log in”, press any number on the keypad of your phone (including * or #, but not including the End Call button) to complete authentication. (If 1 minute passes before you press a key, the authentication will fail, and you will see the “Error during call: No keys pressed.” message.)
You will now be logged on to and transferred to the service to which you were going.
Authenticating with a Passcode from the Duo App or Virginia Tech Web Site
Duo Push requires Internet or cellular connectivity; however, generating a passcode in the Duo Mobile app does not require network or cellular connection.
Since some Virginia Tech Web sites, such as parking.vt.edu for buying and purchasing a parking pass online, are unable to display the interactive Duo prompt, they require a different method of completing authentication with your second factor
On Virginia Tech Web sites that say something about logging on with 2-factor and LDAP, after submitting your VT Username and VT Username passphrase, you may automatically receive a Duo push notification or an automated Duo voice call. If so, complete authentication by responding to the notification or voice call.
When Web sites use this method of authenticating, if no device is specified after the password, Duo will always prefer the first push-enabled device over any other available device.
In the Password text box, type your VT Username passphrase followed by a comma (‘,’), and a keyword representing what you want to use, which is one of: push, phone, or passcode (the actual code). For example if your passphrase is “myPassword” and you want to authenticate with a Duo automated voice call, in the Password text box, type: myPassword,phone and then answer the telephone. Or as another example, to use a passcode, for example “12345”, in the Password text box, type: myPassword,12345.
Detailed Instructions for Authenticating via LDAP
Start logging on to the service that you want, and when prompted, enter your VT Username (PID).
Fill in the password box.
To authenticate with a push notification:
In the password text box, type: ABC,push but replace ABC with your passphrase. (Note the comma and no spaces.)
Click the appropriate button to submit your credentials.
On your phone, when the push notification appears, accept the Duo push notification.
To authenticate with a SMS text message:
In the password text box, type: ABC,sms1 but replace ABC with your passphrase. (Note the comma and no spaces.)
Click the appropriate button to submit your credentials.
You will see an error indicating invalid credentials. (This is normal, because the password text box must be cleared so that you can type a passcode.)
You will receive an SMS text message that starts with "SMS passcodes:" to your primary mobile phone. Open that text message. The text message will contain 10 different passcodes that are each 6-digits long.
In the password text box, type: ABC,XXXXXX but replace ABC with your passphrase (note the comma and no spaces.), and replace XXXXXX with one of the 6-digit passcodes from the SMS text message.
To authenticate with a voice phone call:
In the password text box, type: ABC,phone but replace ABC with your passphrase. (Note the comma and no spaces.)
Click the appropriate button to submit your credentials.
The primary telephone number associated with your Duo account will ring. Answer the telephone.
Press one of the number keys on the phone to confirm the authentication.
Click the appropriate button to submit your credentials.
Tap your YubiKey.
To authenticate with a 6-digit passcode from the Duo mobile app:
On your mobile device, start the Duo mobile app.
In the Duo mobile app, tap the key.
In your browser, in the password text box, type: ABC,XXXXXX but replace ABC with your passphrase, and replace XXXXXX with the 6-digit passcode. (Note the comma and no spaces.)
Click the appropriate button to submit your credentials.
To use a 6-digit passcode from a D-100 token or a software token:
Use the D-100 token or the software application to generate a 6-digit code.
In the password text box, type: ABC,XXXXXX but replace ABC with your passphrase, and replace XXXXXX with the 6-digit passcode. (Note the comma and no spaces.)
Click the appropriate button to submit your credentials.
You will now be logged on to and transferred to the service to which you were going.