Configuring Trusted Devices
Duo Security's trusted devices feature is similar to the "remember my computer" or "keep me logged in" features that users are accustomed to seeing when logging in to many websites. With the trusted devices feature enabled, the user is able to indicate if this is their device or if other people use the device. When users click "Yes, this is my device," they aren't challenged for secondary authentication when they login to that application from that device (and browser) for the specified period of time (30 days).
Trusted devices are enabled on a per-application basis, and are currently supported only for web-based applications. Application owners choose whether to allow users to specify a trusted device, or whether the service is critical such that all logins should be two-step, meaning trusted devices are not allowed.
Configuring a trusted device:
- Login to a web application with your HawkID and Password.
- Approve the push notification automatically sent to your device if you have the Duo Mobile app, otherwise select one of the other options to authenticate with.
- If you are the only person who uses the device, click "Yes, this is my device" to trust the browser.
- When the trust period expires after 30 days, you will be prompted for the Two-step login authentication method again and have the option to trust the browser again.
Note: For this Duo Security function, a trusted device is a combination of a physical computer + a browser. The browser used to set the trusted device flag at login time is the browser on the computer that will be considered trusted.