DUO Security requires WebAuthn authenticators for U2F security keys March 1, 2021 | Information Technology | University of Pittsburgh
!

DUO Security requires WebAuthn authenticators for U2F security keys March 1, 2021

Wednesday, January 27, 2021 - 08:55

 

UPDATE: This announcement originally communicated an update scheduled for Feb. 1, 2021. Due to a decision made by Duo Security, the rollout of this change was delayed to March 1, 2021.

Duo Security, the provider of the University’s multifactor authentication, will require those using U2F security keys to complete a one-time enrollment in web authentication (WebAuthn) beginning on Monday, March 1, 2021.

An on-screen prompt will display the first time a user logs in using a U2F device on or after March 1. The prompt will ask the user to update their device’s security key to use WebAuthn. The user should follow Duo’s on-screen directions until this update is complete to ensure service and safety is maintained. Otherwise, the “Let’s update your security key” prompt will appear each time the user logs in with a U2F security key—until this dual-enrollment step is completed.

Once enrolled, the Duo login experience will remain the same as it is today. Read more about WebAuthn and Duo’s decision to use it on Duo’s blog.

Please contact the 24/7 IT Help Desk at 412-624-HELP (4357) if you have any questions regarding this announcement.