How do I register a security key for Duo?

This article guides you through registering a security key for Duo multi-factor authentication (MFA) at Colorado State University. A security key is a USB device that must be connected to your computer for use with Duo, available for purchase at your campus bookstore or technology store.

Security keys cannot be used with remote devices (e.g., RDP, SSH, websites visited on a VM). Hardware tokens are also available for purchase at your campus bookstore or technology store for those who need remote access but do not wish to use Duo Mobile.

Prerequisites

You will need access to a previously established Duo authentication method (e.g., Duo Push or passcode).

Instructions

Navigate to https://netid.colostate.edu/ and log in with your NetID and password.
When the Duo prompt appears, select Other options.
From the options menu, navigate to the bottom and select Manage Devices.
To proceed, authenticate using a previously established method or a bypass code generated for you by the Division of IT Help Desk.
Once authenticated, select Add a device from the Manage Devices menu.
In the add device menu, select the Security key option.
At the set-up security key menu, click Continue. This will open a popup in your browser with the message "duosecurity.com wants to see the make and model of your security key".
Plug your USB security key into your device and touch it to activate it when prompted.
If successful, a message will confirm that the security key was added. Click Continue.

For instructions on using your security key, see: How do I authenticate with Duo?
For instructions on registering the Duo Mobile app: How do I register and activate the Duo Mobile App?