Frequently Asked Questions

If you do not have a mobile phone, please contact the Service Desk to discuss your options.

Click the following link and submit an email directly to the Service Desk HELP@DUDA.COM or call the Service Desk at (407) 365-2021, Monday - Friday between 7am and 6pm Eastern.

We recommend using the Microsoft Authenticator App if you travel or need to access your A. Duda & Sons account while out of the country.  

The app does a push notification (a pop up on your phone you approve to verify that it is you logging in).  It also generates a 6 digit code every 30 seconds if the push notification isn’t available.   The code doesn't require you to be on the Internet or connected to data, so you don't need phone service to sign in which is a plus for travelers.

There are two ways to get back in to your account.

• Sign in using your alternate authentication phone number, if you previously set one up.
• If you didn't set up an alternate authentication phone number you will need to contact the Service Desk for assistance.

‍

It is important to set up a second/ backup phone number. Because your primary phone number and your mobile app are probably on the same phone, the secondary phone number is the only way you will be able to get back into your account if your phone is lost or stolen without having to contact the Service Desk.

Note:  If you don't have access to your primary phone number, and need help getting in to your account, contact the Service Desk.

To change your primary phone number:

• On a computer, go to the A . Duda & Sons MFA portal
• Sign into the portal with your username@duda.com and your associated password.
• Once you have successfully logged in click on Office 365> Choose Settings  > Select Update contact preferences  
• Choose Security & Privacy > Additional security verification > Choose Update my phone numbers used for account security.
• On the Additional security verification page, select the text box with your current phone number and edit it with your new phone number.
• Select Save
• If this is the number that you use for your preferred verification option, you will be prompted to verify the new number before you can save it.

To add a secondary phone number:

• On a computer, go to A . Duda & Sons MFA portal‍
• Sign into Office 365 with your username@stthomas.edu and your associated password.
• Once you have successfully logged in click on Office 365> Choose Settings  > Select Update contact preferences
• Choose Security & Privacy > Additional security verification > Choose Update my phone numbers used for account security.
• On the Additional security verification page, check the box next to Alternate authentication phone.‍
• Enter your secondary phone number in the text box.
• Select Save and your changes are finished.

Instructions:

• On a computer, go to A . Duda & Sons MFA portal‍
• Sign in to the portal with your username@duda.com and your associated password.
• Once you have successfully logged in click on Office 365> Choose Settings > Select Update contact preferences  
• Choose Security & Privacy > Additional security verification > Choose Update my phone numbers used for account security.
• You will be prompted to verify with MFA - select "Having trouble? Sign in another way" and select the text option to verify.
• Under "what's your preferred option?" click on the drop down arrow and make sure Notify me through app is selected.
• Make sure the box next to Authenticator App is checked, then click on Configure.
• Install the Microsoft Authenticator app on your new mobile phone.  
• In the app, add an account and choose "Work or school account"
• Scan the QR code on your computer then click Next.
• The 6 digit verification code should then appear on your phone.  You will then be prompted to verify using the app. Once you have successfully verified you can close out of O365.

‍

If you want to change how you receive your verification through A. Duda & Sons MFA portal, there are several options you can choose from:

• Calling your authentication phone
• Text a code to your authentication phone
• Notify you through a push notification on the Microsoft Authenticator app - (If you want to use the Microsoft Authenticator App download the app first, then follow the instructions below.)
• Enter a code from the App

Instructions:

• On a computer, go to A . Duda & Sons MFA portal‍
• Sign in to Office 365 with your username@duda.com and your associated password.
• Once you have successfully logged in click on Office 365> Choose Settings  > Select Update contact preferences ‍
• Choose Security & Privacy > Additional security verification > Choose Update my phone numbers used for account security.
• Under "what's your preferred option?" click on the drop down arrow and select the notification option you would like.

• If you are setting up text or a phone call for verification make sure your phone number is correct and checked then choose Save.  You will be prompted to verify your preferred method. Once you have verified that the notification worked you can close out of O365.
• If you are setting up the Microsoft Authenticator App - select Notify me through the app from the drop down and check the Authenticator App box then click on Configure.
• You will then open the Microsoft Authenticator app on your cell phone and add your St. Thomas account (instructions on downloading the app are available at the top of the page for both Android and iPhone). Take a picture of the QR code then click Next.

‍

• You will then be prompted to verify your preferred method.   Once successfully verified you can close out of O365.

If you didn't receive the notification on your phone you can choose to have the verification resent or choose a different method of verification.

To try signing in with a different method, follow these steps:

• On a computer, go to the A. Duda & ons MFA portal
• Sign into Office 365 with your username@duda.com and your associated password.
• When the two-step verification page opens, choose Use a different verification option.  

• Select the verification option you want to use.
• Continue with two-step verification.

‍

On the log in screen there is a link to "sign in a another way".

Depending on how you have set up MFA you can choose one the following:

• Text
• Phone call to your mobile phone
• Phone call to an alternate phone (only available if you have added another number in MFA)
• Approve a request (only for Microsoft Authenticator App users)
• Verification code from mobile app (only for Microsoft Authenticator App users)

Note: You can add an alternate phone number at any time by going to the security settings in A. Duda & Sons portal for  MFA

No. App passwords do not replace your A. Duda & Sons password for logging into your account.  

The app password is used only for apps like an android phone's default email (if you use that feature) or any non browser-based apps that you use to access your St. Thomas account.  

The app password is pretty much one and done.  Enter it in the application and you shouldn't have to remember it or use it again.  If there are any problems with the app password you can simply create a new one.

‍

An app password is just a replacement password you use for any applications you want to access your A. Duda & Sons account.  Not everyone needs to use app passwords; it really depends on the applications you use.  Some common places app passwords are used are the default email on an  iPhone users if you are on iOS 11 > you will not need an app password for the default mail app on your phone.  Using the app password allows these apps to work with your A. Duda & Sons account.  The app password created by MFA replaces your regular A. Duda & Sons password – only for that application. Once you set up the application with the app password, you don’t have to use it again.

Note: Web based email programs like Outlook do not need to use an app password.

‍

• Sign into the A . Duda & Sons MFA portal portal using your A. Duda & Sons password on your computer.
• You will receive a phone call, text, or push notification (depending on the verification method you set up) to your mobile phone to verify that it is you signing into the A. Duda & Sons MFA portal.
• On your computer: Once you have successfully logged in click on Office 365> Choose Settings  > Under “Your app settings” select > Office 365.
• Choose Security & Privacy > Additional security verification > Update your phone numbers used for Account security.
• At the top of the page, choose App passwords.

• Choose create to get an app password.
• If you want to copy the password, choose copy password to clipboard.
  Note:  You will not be able to see this password again once you leave this page.  You can always create a new app password if you need one.
• For accessing email on your mobile phone - go to your mobile phone and open up your default email account.   When prompted to enter a password, enter the app password in the password box.  

Yes. In the future, it will depend on where you are.

Location:

• While on premise (in one fof the Duda connected offices) you will not be prompted for the MFA verification.
• While off premise you will be required to verify using MFA.

MFA adds an additional layer to the login process.

MFA is more secure than just a password, because it relies on two forms of authentication: something you know, and something you have with you. The something you know is your password. The something you have with you is a phone or device that you commonly have with you. When your account is protected with two-step verification, that means that a malicious hacker can't sign in as you if they get your password somehow because they don't have access to your phone, too.

Here is an example:  Let's say a unscrupulous person in South America steals your A. Duda & Sons username and password.  When that person attempts to log into your account they will be prompted to verify who they are with MFA (either with a text, phone call, or through the mobile app).  Since you have your mobile phone in your possession, when the notification is sent they will not be able to provide this verification and are less likely to  be able to access your account.

You will be alerted that someone tried to access your account.  Since you know it isn't you, you can then make sure to change your password and thwart the cyber criminal.

‍

MFA is security method for your account that helps verify that you are actually the person who is logging into your account.

How it works:

1. You log into your account with your A. Duda and Sons username & password.
2. You will then get the notification via the method you chose during set up (a text, phone call, or mobile app verification) to verify it is you logging into your account.

‍