DUO two-factor authentication adds a second layer of security to your FDU NetID. It requires two factors to verify identity. These factors include something you know – your FDU NetID and password, and something you have – a phone or passcode, to authenticate and gain access to your account on FDU services. Passwords alone no longer provide adequate protection against cyber hacking. DUO is required for all current FDU students. Please follow the steps below.

Install DUO Mobile App

The DUO app is available for Android, iOS and iPadOS. Use the links below to install DUO on your mobile device.

DUO Mobile App Setup

1. In a Desktop or Laptop browser visit the DUO Management Portal to begin the activation process by enrolling your device.  Activation requires scanning a QR code with the DUO app’s built-in scanner

DUO Management Portal

2. Duo prompts you to enroll the first time you visit the DUO Management Portal using a browser or a client application that shows the interactive DUO web-based prompt

Supported Browsers: Chrome, Firefox, Safari, Edge, Opera, and Internet Explorer 8 or later. Some browsers do not support all of DUO’s authentication devices (for example, Security Keys won’t work with Internet Explorer). For the widest compatibility with DUO’s authentication methods, we recommend recent versions of Chrome and Firefox.

3. Click “Start setup” to begin enrolling your device

4. Select the type of device you’d like to enroll and click “Continue“. We recommend using a smartphone for the best experience, but you can also enroll iOS/Android tablets

5. Select your country from the drop-down list and type your phone number. Use the number of your smartphone or cell phone that you installed the DUO Mobile Security App on in the Step 1

6. Double-check that you entered it correctly, check the box, and click “Continue“

7. Choose your device’s operating system and click “Continue“.

8. Click “I have DUO Mobile installed”

• If you have not completed installing the DUO Mobile App in Step 1 please complete now by following the platform-specific instructions on the screen. After installing the app return to the enrollment window

9. Activating the app links it to your account so you can use it for authentication

10. On iPhone, Android, and Windows Phone activate DUO Mobile by scanning the barcode with the app’s built-in barcode scanner. Follow the platform specific instructions for your device:

11. The “Continue” button is clickable after you scan the barcode successfully

• Can’t scan the barcode? Click “Or, have an activation link emailed to you instead” and follow the instructions

12. Once activated click “Continue” to complete registration

1. You can use Device Options to give your phone a more descriptive name, or you can click “Add another device” to start the enrollment process again and add a second phone or another authenticator

• If this is the device you’ll use most often with DUO then you may want to enable automatic push requests by changing the “When I log in:” option and changing the setting from “Ask me to choose an authentication method” to “Automatically send this device a DUO Push” and click “Save“. With one of the automatic options enabled DUO automatically sends an authentication request via push notification to the DUO Mobile app on your smartphone.

2. Your device is ready to approve DUO push authentication requests. Click “Send me a Push” to give it a try. All you need to do is tap “Approve” on the DUO login request received at your phone

With DUO activated on your account, and with your device enrolled, you are ready to use DUO. When logging in, you will have two authentication options. Review the options below to determine what works best for you.

There are two ways you can use DUO:

Push Notification

Once the DUO mobile app is installed, you can select to receive a DUO notification on your smartphone. Open the notification, and you’ll see a green checkmark, and a red X. Simply tap the “Green Checkmark” to gain access.

Passcodes

You can use the DUO mobile app to generate passcodes. This option does not require wifi or data, so this is a great option if you’re traveling or if you have limited or no cell/internet service. Open your DUO mobile app, tap the FDU logo and it will reveal a passcode. During login, choose the enter a passcode option, enter the code and you’re in.

If you do not have your device with you, don’t worry. You can contact the Fairleigh Dickinson University Technical Assistance Center (UTAC) for a temporary passcode. These passcodes can be entered in the DUO prompt on your computer.

To change settings or enroll another device, visit DUO Management Portal or any DUO-supported application. When you get to the DUO prompt, click the “Settings” button and choose to add a new device or access your settings.

DUO Management Portal

For commonly asked questions on using DUO, please visit the link below:

The “remember me” option is displayed by Duo when you sign in with FDU NetID on the web. After providing your second factor for authentication, Duo will present you with a prompt asking if you would like to have this device remembered for future logins. Selecting “Yes, this is my device” sets the “remember me” status for Duo.

Use the “remember me” option to reduce how often you have to sign in with two-factor authentication (2FA) on the same web browser. It’s safe to use on trusted computers and lasts for 30 days.

Refer to our Duo Quick Start Guide below for instructions on using the “remember me” option within the context of the overall sign-in experience.

What is the “remember me” option?

The “remember me” option is a feature of Duo that tells your browser to remember that you have confirmed your identity using your 2FA device. If you confirm that “Yes, this is my device” when authenticating with Duo, you won’t have to use your 2FA device as often on that browser. For example, if you use it on your computer at work, it reduces how often you have to sign in with 2FA at work; but your laptop at home will still ask you to sign in with 2FA.

Why would I want to use it?

The “remember me” option saves you time and reduces distraction by reducing how often you have to use your 2FA device. If you routinely use the Duo callback method, it also saves the FDU money in telephony costs.

Is “Remember Me” safe? Doesn’t it defeat the purpose of 2FA?

The “remember me” option is safe to use on computers and devices that you can trust to protect your browser. It doesn’t defeat the purpose of 2FA because the convenience it provides is limited to each computer and browser that you choose to use it on. If you or anyone else tries to sign in with your FDU NetID on a different computer or browser, 2FA will be required.

How long does it last?

The “remember me” option lasts 30 days. It saves a secure cookie on your browser to track the time until you need to use your 2FA device again. If your browser clears cookies this will remove “remember me” until you re-select it.

Why is the “remember me” duration 30 days?

30 days is the current “remember me” duration because it is often enough to remind you that 2FA is turned on, but not so often to be annoying. While some institutions use shorter or longer durations, 30 days is a common duration at peer institutions.

How do I clear it on my current browser?

If the “remember me” option is enabled on the browser you’re using right now, clear your cookies for duosecurity.com. To clear it on other browsers, repeat this process on each of them.

How do I reset it on a browser I no longer control?

If you enabled the “remember me” option on a browser you no longer control, Please open a support ticket by clicking Support at the top of the page, or visiting samisupport.fdu.edu.

I’m using the “remember me” option, and I still have to use my 2FA device more often than every 30 days. Why is that?

Some system owners require you to reauthenticate with 2FA every time you access their systems for security, regardless of using the “remember me” option (workday for example). This can increase how often you have to sign in with 2FA. If you find you are regularly asked for 2FA on some sites despite the “remember me” option, but not other websites this is likely the cause. Other contributing factors include how many different computers you use, how many different browsers you use on these computers, whether or not you use the “remember me” option on all of them, how your browsers are configured to use cookies, and how often you clear your browser cookies.

Why do some system owners override the “remember me” option and reauthenticate me every time I sign in?

System owners decide to reauthenticate you based on what institutional and personal data they need to protect, and what threats and risks they need to guard against. Some of them reauthenticate you because they are concerned about unauthorized access from unattended browser sessions, and forcing you to reauthenticate is one way to re-establish that it’s you.

Why isn’t the “remember me” option working for me? Are there things that prevent it from working correctly?

The “remember me” option requires the use of browser cookies, so it may not work as expected in these circumstances:

• You are accessing a site that overrides the “remember me” option
  
• You cleared your browser cookies
  
• You started using a different browser
  
• You started using a different computer or device
  
• You are using a private browsing mode
  
• You disabled the use of browser cookies
  
• Your browser doesn’t allow cookies to be saved
  
• You use a browser extension that blocks cookies

Who will be affected?

This may affect FDU community users using Windows 7, Windows 8.1, Android Devices with Android OS version 9 or lower, and Apple devices with iOS versions that don’t support TLS 1.2.

Check if you are using the supported endpoints by reading the information below:

Windows

Supported Windows operating system (OS) versions will support TLS 1.2 by default. If you are running a supported Windows OS, no action is required.

Unsupported Versions for Windows Operating Systems

Check OS Version

• Open the Windows Search box and type “About your PC” and click on “Open“
• Under Windows Specifications, check which edition and version of Windows your device is running

Enabling TLS 1.2 on your Operating System

If your operating system was manually changed to disable TLS 1.2 for some reason, you can verify or configure your system for TLS 1.2.

Before making any changes, create a backup of the registry:

1. In the Windows Registry Editor, locate and click the “Protocols registry key” or “subkey“
   that needs to be backed up
2. Click “File”, then “Export”
3. In the Export Registry File dialog box, select the filename and location of where to save the backup
4. Click “Save”

After creating a backup of the registry, follow the steps below to enable TLS 1.2 on your system:

1. Click the Start menu, type “regedit” and press the Enter key. The Registry Editor window should be opened.
2. Navigate to follow the registry path: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols
3. Check if the subkey of TLS v1.2 is enabled for both the server and the client. Each protocol’s state is controlled by two keys: Enabled and DisabledByDefault
4. Make sure the Enabled value is 1 and the DisabledByDefault value is 0 or missing, the protocol is enabled.
5. If the Enabled value is 1 but the DisabledByDefault value is 1, the protocol is disabled by default – it will not be used unless another host explicitly requests it during negotiation.
6. If the Enabled value is 0, the protocol is disabled
7. Restart the system to ensure the new settings take effect

DUO Mobile

Supported Duo Mobile applications running on supported OS versions will support TLS 1.2+ by default. If you are running a supported Duo Mobile application on a supported OS, no action is required.

• Supported Android OS versions: Android 10.0 and greater
• Supported iOS versions: iOS 14.0 and greater

Web Browsers

Common web browsers like Google Chrome, Microsoft Edge, Mozilla Firefox, Opera, etc. with their latest version are supporting TLS 1.2.

Chrome and Microsoft Edge

1. In the Windows menu search box, type “Internet Options”
2. In the Internet Properties window, on the Advanced tab, scroll down to the Security section
3. Make sure the “User TLS 1.2” checkbox is checked

4. Click “OK” and restart the browser

Mozilla Firefox

1. Open the Mozilla Firefox Browser
2. In the address bar, type “about:config” and press “Enter“
3. In the Search Field type “tls”. Find and double-click the entry for “security.tls. version. min”
4. Make sure the integer value is 3 to force a minimum protocol of TLS 1.2

5. Click “OK” and restart the browser

We understand that upgrading your device is not always an option. In these instances, you can still use Duo Passcodes to perform multi-factor authentication.

1. To use this method, select “Enter a passcode” upon receiving your browser’s Duo security prompt

2. Next, open the Duo app and click “Show”. This will provide a six-digit passcode which you can enter into the browser prompt

3. Enter the six-digit passcode from the DUO app and click “Log in”

Echo360 helps instructors capture and extend those moments to improve student engagement before, during and after class.

Through our technology platform, students have 24/7 access to classroom discussion, presentation materials, and the lecture itself.

Getting Started with “Echo 360 Universal Capture: Personal“

Universal Capture: Personal is a stand-alone application designed to be used by instructors on their personal computers to generate video recordings. The software enables you to create video recording across multiple computing platforms via a unified interface. That means instructors can record and share video on Mac and Windows computers, inside or outside of the classroom, with an identical user experience on each device.

For those faculty members who do not yet have an Echo 360 account, it is necessary for you to login to Webcampus first. Therefore, please follow the directions below in order for you to have access to Echo360 environment. Once you have completed these steps via webcampus, thereafter users will be able to login directly to echo360.fdu.edu with their FDU NetID credentials.

1. Login to Webcampus using your FDU NetID
2. Click on “Your Course“
3. Click on “Course Documents“

4. Click on “Tools“
5. Click on “Echo360 Cloud“

6. In this page, enter a Name that makes it clear this is the link for Echo360 class content, for example: “Echo360 Recordings”
7. Click “Submit“

8. A new link will appear on your Course Documents page titled “Echo360 Recordings“. This maybe at the bottom of the Course Documents page
9. Click on the “Echo360 Recordings” link. This will redirect you to the Echo environment

10. Click on the “Gear Icon” on the top right
11. Click on “Downloads“

12. From the Universal Capture: Personal area of the Downloads page, select the link to download the installer appropriate for the type of computer/operating system you are running. After you have downloaded the personal capture, follow the instructions on how to capture your lectures using this tool

13. Once you have installed the software, please launch the Universal Capture: Personal application. If you see the following login screen, click on the link and login with your FDU NetID credentials

14. After logging in select the inputs you want to capture from the two drop down menu. If the drop down menu says No Input just select the option you want from the available sources
    • Left Input: Click on the dropdown menu to select your input for the left video channel (e.g. display, webcam, etc.).
    • The bars in the middle shows the volume levels of the audio capture.
    • Right Input: Click on the dropdown menu to select your input for the right video channel (e.g. display, webcam, etc.).
    • The Display option from the drop down menu chooses the application that you want to record from your computer for example a PowerPoint presentation.
    • Preview the inputs on the screen; to be sure, they will record properly.

15. Click the “Pencil Icon” or title to launch the Capture Details dialog box

16. Enter a Title, add a Description or Tags and select a Publishing location for the recording. By default, your recordings are published to your “Library” folder
17. Click “Save”

18. At this point, if you are going to present any materials via PowerPoint, Web or any other applications open it and minimize it
19. When you are ready, click the “Record” button. You will have 5 seconds before recording starts so you can switch to the material you want to present

20. During a recording, you will have the option to Stop, Pause, or Cancel recording. Do not stop recording until you are totally finished with the session. If you click on the cancel button, it will cancel the entire recording

• Once you stop the recording, you will receive a message and you can click on the “Close” option to exit the program. Once your recording process is finished, it will automatically publish to the location that you have specified. You will receive an email when processing is finished and you are able to view your recording

Viewing Recording

Once you receive the email, your video is online and ready to be viewed.

1. Log back into echo360.fdu.edu
2. Click on the “My Content” tab on the left side of the window.
3. Click on the recording that you want to view

4. If you want users to view your recording, scroll down towards the bottom of the screen to the “Links” section. Copy the link and you can send it to users via email

Accessing Ellucian COLLEAGUE

COLLEAGUE uses single sign-on protocol for users to login. The login or user ID consists of the first part of the FDU NetID up until the @ sign in the NetID.

For instance, if your NetID webmail address is john.q.public@fdu.edu your COLLEAGUE login ID would be “john.q.public“

The password would be the exact same one that you use with your FDU NetID.

Virtru email encryption is the preferred method to send and view encrypted emails and files with your FDU email address. Available for FDU Faculty and Staff upon request. Click the link below to request access to Virtru Email Encryption.

The Virtru Email Encryption Tutorial will help users navigate installation, basic use, different usage scenarios, and common technical questions.

Alternative Approved Methods for Encryption

If you are not approved for Virtru email encryption, the articles below are alternative, FDU OIRT and DSIRT approved methods for encrypting Microsoft Office and Adobe PDF files and comply with the University WISP.

Follow these easy to use instructions for encrypting Word, Excel, and Acrobat files using built-in features.

1. For Word and/or Excel files, first click on File on the upper left-hand corner

2. Under the Info tab, click on Protect Document for Word and Protect Workbook for Excel followed by Encrypt with Password

3. Enter a password in the pop-up window. Re-enter the password in the next window to confirm

4. The below message will confirm your document has been password-protected

5. To open a password-protected file, double-click on the file and enter the created password

1. Select Tools on the Navigation Tab and then select Protect

2. On the Protect Tab select Encrypt

3. Select Encrypt with Password. Then select Yes on the security pop-up window

4. Check Require a Password to Open the Document and then choose a strong password. Under compatibility, choose Acrobat X and later to change the encryption method to 256-bit.

5. Confirm the password when requested. Please note that the document WILL NOT be fully encrypted until it is saved

6. To open the file, double-click the file and enter the created password.

To maintain a secure and productive Microsoft Teams experience at Fairleigh Dickinson University, it’s important to understand how to manage external communication requests, recognize brand impersonation attempts, and report suspicious content. This guide offers clear, step-by-step instructions to help you stay secure while using Teams.

Managing Incoming Requests from External Users

To ensure your Teams environment remains secure, review and manage requests from individuals outside of FDU before accepting any communication.

Steps to Manage External User Requests:

1. Initial Notification: When someone outside FDU tries to initiate a chat, you will receive a notification indicating they are external to your organization

2. Review the Request: Examine the name and any provided details. Be cautious of unfamiliar or suspicious names
3. Choose an Action:
   • Click “Accept” if you recognize the individual and have a valid reason to communicate
   • Click “Block” if the person is unfamiliar or seems suspicious. Blocking prevents further contact

Protecting Against Brand Impersonation in Teams Chat

Microsoft Teams now detects potential brand impersonation attempts automatically. This feature alerts you if an external user’s message seems suspicious.

Steps to Protect Yourself:

1. First Message Analysis: Teams evaluates the external user’s name and email for impersonation risks
2. High-Risk Alert: If a potential threat is detected, Teams will display a prominent warning with one or more of the following:
   • The sender’s name or email resembles a known FDU entity
   • No previous communication history with the sender
   • The sender is outside your organization

3. Review the Message Content: Click “Preview their messages” and read the message carefully. Watch for urgent requests or unusual links/attachments
4. Second Warning (If Applicable): If you proceed to accept, Teams may display another warning about the associated risks

5. Make Your Decision: Use the alerts and message content to decide whether to continue the conversation

Reporting Suspicious Content

Reporting suspicious messages, calls, or users within Teams helps FDU’s security team manage potential threats effectively.

Reporting Messages from Internal User:

1. Hover Over the Message: Place your cursor over the suspicious message.
2. Click the “More options” (…) icon > More actions > Report this message.

1. In the dialog that opens, verify Security risk – Spam, phishing, malicious content is selected, then click “Report”

4. In the confirmation dialog, click “Close”

Reporting Messages from External Sender:

If you receive a suspicious message from an external sender (e.g., @outlook.com, @live.com), the “Report this message” option in Teams will not be available.

To report a suspicious message from an external source, you must create a SAMI support ticket:

1. Click “Get Support” button located at the bottom of this article
2. Create a support ticket and include all relevant details about the suspicious message