On a computer

Go to the CC Single Sign-In page on a computer using the Chrome or Firefox web browser, click "Check Email (Office365)," and log in with your CC username and password as you normally would

https://www.coloradocollege.edu/ssi 

You'll see an intro screen - click "Start Setup"

Select the type of device you are adding. Choose "Mobile Phone" and click "Continue" then enter your mobile phone number

Choose the type of phone (in this example, we're using an android phone)

You'll see a screen prompting you to install the "Duo Mobile" app on your phone. At this point, leave your computer as is and pick up your phone

show all / hide all

On your mobile phone

Open the google play store (or the app store on an iPhone)

Search for "Duo Mobile" (note that "Duo" and "Duo Mobile" are different apps, so make sure to choose "Duo Mobile")

Tap "install" and then "open" when it's finished installing (the app is completely free, takes very little room, and uses very little bandwidth)

Tap the small "+" icon in the upper right corner to add a new connection

Point the phone's camera at the QR code on your computer screen - it will automatically read and link your account to the phone

show all / hide all

Back to your computer

You should see a green checkbox and can now click "Continue"

You'll see one final screen summarizing that you've set up a mobile phone and can choose "continue to login

show all / hide all

On your phone

You will get a notification for a login request - just tap the "approve" green check mark and you're done!

show all / hide all

More information

From now on, when you sign into single sign in, you'll see a screen in which you can choose from several options. Pick "Send me a push" to use the one-touch option on the app we just set up, or you can have it call you or text you with a one-time code you can enter.

You can also set up additional devices, choose a default authentication method, and more. We'd recommend adding at least one more device (maybe an ipad or a second phone, for example), but the more options you have, the better.

We also offer Duo hardware tokens in certain cases, which are small devices that fit on a keychain. You press the button and it displays a code for multi-factor authentication. These are good options for traveling internationally or other out of the ordinary cases.

Additional information and troubleshooting

A few important notes and common issues you might come across

• If you are in a situation where you need to log in and you don't have a second device, click the "Duo (MFA) Bypass Code Generator" link just below the prompt for username and password. Here you can generate a temporary bypass code so you can still log in.
• Once MFA is set up on your account, you'll need to go through the second factor of authentication at least once on all your devices where you use an email application (like Outlook on your PC/Mac/Smartphone). In most cases you will be prompted for this, but sometimes it won't prompt you and will instead fail and send you an email on that device saying that "IT has blocked the device."
• For smart phones in particular, if you use an app for your CC email and/or calendar, start by removing that account and re-adding it. That process should prompt you to sign in and do the second factor, and then it will be a trusted app from that point on.
• The default "Mail" app on android devices will not work with MFA at all. In this case, your best option is to use the Outlook app instead.
• The "Mail" app on Mac OSX does not support MFA if you aren't on at least Mac OSX 14.4. In that case, you can either update to at least that level or switch to Outlook instead.