The first time you attempt to log in to any Boston University service that requires two-factor authentication you will be redirected to a set-up page like this:

  1. Click Start Setup (and click through prompts.)
  2. Select an Authentication Method. One or more devices can be registered, or “enrolled,” to serve as the second factor when two-factor authentication is required while logging in:
    • Mobile phone: this can be a smart phone like an iPhone or Android, or a simple cell phone with basic features
    • Tablet: common examples include iPad models or Android devices like Nexus 7, Nexus 10, etc.
    • Landline: can be your office phone, home phone, etc.
    • Security Key: A security key plugs into your USB port and when tapped or when the button is pressed it sends a signed response back to Duo to validate your login. *Duo uses the WebAuthn authentication standards to interact with your security keys. You may also see WebAuthn referred to as “FIDO2”.