Verified Duo Push FAQ

What is Verified Duo Push?

A verified push is a new type of duo push, but with more security. Instead of the typical duo push where you click the green check mark, you will be prompted to enter a code into the duo app. When signing in, your application will provide you with a code for you to enter in your duo app.

1. When you sign into a Bucknell application through CAS, you will be prompted with a code. This is what it will look like.
   
2. You will then open the Duo Mobile app on your phone and enter the code. The screen in the Duo Mobile app on your phone will look like the following.
   
3. Once you enter the code, the "Verify" button will light up, and you will press it to verify.

Why use Verified Push?

With the traditional duo push, there were two kinds of common vulnerabilities identified by Duo. They were:

• Push Harassment – Multiple successive push notifications to bother a user into accepting a push for a fraudulent login attempt

• Push Fatigue – Constant MFA means users pay less attention to the details of their login, causing a user to mindlessly accept a push login

By using a verification code, you can prevent accidentally accepting a push you did not request and only you would have the code to be able to log in.