Overview
Two-factor authentication is a second layer of security, keeping an individual's account secure even if their password is compromised. It requires two proofs of identity when logging in:
- Something you know, such as your password
- Something you have, such as a mobile app or a hardware token
Duo is the two-factor authentication solution that secures our systems and individual accounts at U-M. With Duo, you'll be alerted right away - on any phone or mobile device - if someone is trying to log in as you.
To enroll in Duo, visit lvl2.med.umich.edu/duoenroll.
In August 2024, the Duo push notification changed to require a 3-digit code instead of a button push. This change was made because the healthcare sector is being actively targeted by threat actors. The 3-digit code makes it significantly more difficult for a threat actor to impersonate or trick a legitimate user.
Michigan Medicine has experienced reportable security events in the past several years, and the frequency and impact of these events is only increasing. These events have real and significant impacts to our patients, students, researchers, and to the security of our institutional data.
Note: If you receive a Duo prompt that you did not initiate, it is important to deny the request immediately by pushing "I'm not logging in" in the Duo Mobile app. This action helps protect your account from unauthorized access. Next, please change your Michigan Medicine password right away and report the incident to the Michigan Medicine Service Desk at 734-936-8000. Your prompt attention to these steps is crucial for maintaining the security of your account.
Get Assistance
Visit the Michigan Medicine Help Center (help.med.umich.edu) to chat with an agent, or submit a ticket for additional assistance and questions
Related Information
Some applications require DUO authentication, but do not provide the same menu provided when logging into a website. Below are a list of commands that can be entered for additional options when using an application without a standard DUO authentication interface.
|
Function
|
Command
|
Notes
|
|---|---|---|
| Push | push |
Default function for most users, and does not need to be manually entered (some exceptions apply). |
| Call | phone |
The command for manually selecting the phone call function. If more than one phone is enrolled, they can be specified by the commands: phone1, phone2, phone3... |
| Text | sms |
Use this command if DUO codes are needed/preferred to authenticate with an application or device. |
Duo Resources for Michigan Medicine
- Duo - Authentication Options
- Duo Two-Factor Authentication - Setting Your Default Authentication Method
- Verified Duo Push
- Duo first time enrollment
- Enhanced Duo (for User Profile Page only)
- How to use Duo Remember Me
Topics
- Duo Two-Factor Authentication - Electronic Prescribing of Controlled Substances
- Duo - Enroll iPhone
- Duo - Enroll Android Phones
- Duo - Enroll Duo Hardware Token
- VPN - Accessing VPN with Duo
- Duo Two-Factor Authentication - Setting Your Default Authentication Method
- Duo - Frequently Asked Questions
- How to remove a hard token from your Duo account:
- Log in to the Michigan Medicine User Profile page.
- Click the Duo Settings tab.
- Click Manage UM- Duo Account.
- Click my settings and devices, and 2FA to verify it's you.
- Choose the device you want to modify and click on the trash can icon for the token you'd like to remove.
Duo-Protected Services of Note
- Weblogin
- Wolverine Access
- Electronic Prescription of Controlled Substances (EPCS)
- Virtual Private Network (VPN)
- Exchange Outlook Web App
- ServiceNow