Multi-Factor Authentication (MFA) - What devices can I use?

This article explains what devices you can use to access the University of Maine System's Multi-factor Authentication (MFA). We have listed some devices that we recommend and listed a few that we can support but only in a limited capacity. If your device is not listed or you are unsure if your device will work, please contact the IT Helpdesk.

Detailed Information

Recommended and Fully Supported

• Apple iPhone / iPod Touch / iPad
  • iOS/iPadOS 16.0 DEPRECATED
  • Requires iOS/iPadOS 17.0 or greater starting April 16, 2026
  • How Do I Enroll in Multi-factor Authentication using the Duo Mobile App on my iOS device?
• Android Phone / Tablet
  • Android 11 DEPRECATED
  • Requires Android 12 or greater starting April 16, 2026
  • How Do I Enroll in Multi-factor Authentication using the Duo Mobile App on my Android device?
• Hardware Token / Code Generator (University-provided)
  • How Do I Enroll in Multi-factor Authentication using a Code Generator token?

Available with Limited Support

• Apple Watch
  • Requires DuoMobile 3.8 and WatchOS 4.0 or greater.
• Android Watch
  • Currently works but requires some extra setup. Please see the Duo KB for more information. 

• Integrated Device Authenticators
  • Android biometrics
    • Android device with biometric hardware and Android OS version 10 or later
    • A supported browser:
      • Chrome 95 or later
      • Firefox 68 or later
  • Mac Touch ID 
    • A MacBook Pro, Macbook Air, or Magic Keyboard with a TouchID button.  
    • A fingerprint enrolled in Touch ID (see how to do this at the Apple Support site).
    • A supported browser:
      • Chrome 70 or later
      • Safari 14 or later
      • Firefox 122 or later
  • iOS / iPadOS Touch ID / Face ID
    • Apple devices with iOS / iPadOS 13 or greater.
    • iCloud Keychain & Two-factor authentication on your AppleID
    • A supported browser:
      • Safari 14.5 or later
      • Chrome / Edge 95 or later
      • Firefox 38 or later
  • Windows Hello
    • Windows Hello configured for your desktop user profile
      • Personally Owned Devices: Follow Microsoft's instructions to Configure Windows Hello, then the "For all devices" directions below.
      • University-managed Devices: Follow our instructions to Enroll in Windows Hello for Business, then the "For all devices" directions below.
      • For all devices: Add Windows Hello or Windows Hello for Business as Duo MFA Option
    • A supported browser:
      • Chrome 73 or later
      • Edge 79 or later
      • Firefox 66 or later
    • Note: Windows Hello authentication may be available in "private" or "incognito" browsing sessions.
• USB Security Key
  • WebAuthn/FIDO2 Security Key (Example: Yubico or Feitian)
  • A supported browser (Chrome 70, Firefox 60, Safari 13, Microsoft Edge 79 or later).
  • Available USB Port directly attached to the system requesting MFA verification.
    • Note: USB security keys typically do not work over a remote desktop connection.
  • For more information: Use Security Keys with the Traditional Duo Prompt (External Link)

Environment

• Duo Multi-factor Authentication