Help Desk

Even with multi-factor authentication enabled at Reed, accounts can still be compromised. This extra verification step is a tool to help thwart hackers and keep college data safe.

Consider this real-world example... A phisher sets up a fake webpage with an identical-looking Reed login page. You enter your Reed username and password on the fake login page, effectively handing over your login credentials to the phisher. Now, the phisher uses those same credentials to immediately log into a real Reed website (such as IRIS), which then sends a Duo push to your phone. You accept the request, thinking you received it because you were just trying to log into (what turned out to be a fake) Reed website. Now the phisher has full access to your Reed account--can read/send emails, access your Google Drive files, see your W-2 through Employee Self-Service, etc.

With Duo Verified Push, users will be presented with a 3-digit code:

At this point, enter the three digit code in the Duo Mobile app on your device. That's it!

The change to Duo Verified Push has no impact on other Duo methods. Hardware tokens, passcodes from the Mobile App, SMS, and phone call options will still work. Using Duo Push with the mobile app is still our recommended method at Reed.

Yes! You still have the option to remember Duo on trusted devices. When selecting this option, you won't be prompted with Duo for another 30 days (this is a per browser, per device setting).