If you do not have a mobile phone, please contact the Service Desk to discuss your options.
Click the following link and submit an email directly to the Service Desk HELP@DUDA.COM or call the Service Desk at (407) 365-2021, Monday - Friday between 7am and 6pm Eastern.
We recommend using the Microsoft Authenticator App if you travel or need to access your A. Duda & Sons account while out of the country.
The app does a push notification (a pop up on your phone you approve to verify that it is you logging in). It also generates a 6 digit code every 30 seconds if the push notification isn’t available. The code doesn't require you to be on the Internet or connected to data, so you don't need phone service to sign in which is a plus for travelers.
There are two ways to get back in to your account.
It is important to set up a second/ backup phone number. Because your primary phone number and your mobile app are probably on the same phone, the secondary phone number is the only way you will be able to get back into your account if your phone is lost or stolen without having to contact the Service Desk.
Note: If you don't have access to your primary phone number, and need help getting in to your account, contact the Service Desk.
To change your primary phone number:
To add a secondary phone number:
If you want to change how you receive your verification through A. Duda & Sons MFA portal, there are several options you can choose from:
If you didn't receive the notification on your phone you can choose to have the verification resent or choose a different method of verification.
To try signing in with a different method, follow these steps:
On the log in screen there is a link to "sign in a another way".
Depending on how you have set up MFA you can choose one the following:
Note: You can add an alternate phone number at any time by going to the security settings in A. Duda & Sons portal for MFA
No. App passwords do not replace your A. Duda & Sons password for logging into your account.
The app password is used only for apps like an android phone's default email (if you use that feature) or any non browser-based apps that you use to access your St. Thomas account.
The app password is pretty much one and done. Enter it in the application and you shouldn't have to remember it or use it again. If there are any problems with the app password you can simply create a new one.
An app password is just a replacement password you use for any applications you want to access your A. Duda & Sons account. Not everyone needs to use app passwords; it really depends on the applications you use. Some common places app passwords are used are the default email on an iPhone users if you are on iOS 11 > you will not need an app password for the default mail app on your phone. Using the app password allows these apps to work with your A. Duda & Sons account. The app password created by MFA replaces your regular A. Duda & Sons password – only for that application. Once you set up the application with the app password, you don’t have to use it again.
Note: Web based email programs like Outlook do not need to use an app password.
Location:
MFA adds an additional layer to the login process.
MFA is more secure than just a password, because it relies on two forms of authentication: something you know, and something you have with you. The something you know is your password. The something you have with you is a phone or device that you commonly have with you. When your account is protected with two-step verification, that means that a malicious hacker can't sign in as you if they get your password somehow because they don't have access to your phone, too.
Here is an example: Let's say a unscrupulous person in South America steals your A. Duda & Sons username and password. When that person attempts to log into your account they will be prompted to verify who they are with MFA (either with a text, phone call, or through the mobile app). Since you have your mobile phone in your possession, when the notification is sent they will not be able to provide this verification and are less likely to be able to access your account.
You will be alerted that someone tried to access your account. Since you know it isn't you, you can then make sure to change your password and thwart the cyber criminal.
MFA is security method for your account that helps verify that you are actually the person who is logging into your account.
How it works: