[Campus Notice] Action Required: Update Your Duo Mobile App Before March 16, 2026

UCR Information Technology Solutions tech-bulletin at lists.ucr.edu
Thu Jan 22 14:41:55 PST 2026 

[image: image]
Update your Duo Mobile app to version 4.85.0 or higher before March 16,
2026 to ensure uninterrupted access to UCR applications protected by
multi-factor authentication.

Dear Highlander,

Starting March 16, 2026, UCR’s multi-factor authentication provider, Duo,
will no longer support mobile app versions older than 4.85.0. You are
receiving this message because you may be using a version of the Duo Mobile
app that is affected by this change.

To ensure uninterrupted access to UCR applications protected by
multi-factor authentication, you must update your Duo Mobile app to version
4.85.0 or higher before March 16. Please note that you will also receive an
update notice in your Duo Mobile app prompting you to upgrade to a
supported version of the app.
What This Means for You

If your Duo Mobile app is not updated to version 4.85.0 or higher before
March 16:


   -

   You will not be able to log in to UCR applications protected by single
   sign-on, as you will no longer receive Duo Push or verified Duo Push
   multi-factor authentication requests.
   -

   You will still be able to launch the Duo Mobile app and generate
   passcodes, but they will not guarantee a successful login attempt due to
   the outdated mobile app.

What You Need to Do

There is no action needed if you have already updated your Duo Mobile app
to version 4.85.0 or higher.


   -

   For supported mobile operating systems (iOS 17 and later & Android 12
   and later): Please update your Duo Mobile app to version 4.85.0 or
   higher.
   -

   For unsupported mobile OS versions: You will not be able to update Duo
   Mobile to the latest required version. However, you may register other
   Duo devices
   <https://ucrsupport.service-now.com/ucr_portal?id=kb_article_view&sysparm_article=KB0012280>,
   such as Duo Desktop
   <https://ucrsupport.service-now.com/ucr_portal?id=kb_article_view&sysparm_article=KB0012281>
   and biometrics
   <https://ucrsupport.service-now.com/ucr_portal?id=kb_article_view&sysparm_article=KB0012279>
   .


If your device cannot support the latest required version of the Duo Mobile
app and you are not able to upgrade your device, you may request a hardware
security token (passcode-generating device) from Information Technology
Solutions (ITS).
Hardware Security Token Request Process

If you would like to request a security token from ITS, please take the
following steps:


   1.

   (For UCR employees only) Obtain Supervisor Approval: Secure a written
   approval from your supervisor using the Hardware TOTP Security Token
   Supervisor Approval Form <https://goto.ucr.edu/hardware-token-approval>.


Note: Students do not need to fill out and submit the Hardware TOTP
Security Token Supervisor Approval Form.


   2.

   Submit a Request Ticket: Submit a ticket
   <https://ucrsupport.service-now.com/ucr_portal?id=sc_cat_item&sys_id=c7ed7b211b2c9510609f86e9cd4bcbba>
   to request a hardware security token. Note that UCR employees must secure
   their supervisor’s written approval first before submitting a ticket.
   -

      In the Short Description field, indicate “TOTP hardware security
      token request.”
      -

      In the Description field, indicate the reason for the request.
      -

      Before submitting the ticket, employees must add the Hardware TOTP
      Security Token Supervisor Approval Form they filled out as an attachment.
      -

      Submit the form and wait for a BearHelp technician to get in touch
      with you to process your request.



   3.

   Claim Your Hardware Token: Visit the Computing & Communication Center
   <https://campusmap.ucr.edu/?id=2106#!ct/71247,71297,71304,71305?m/905411?s/>
   (open Monday through Friday, 8:00 am to 5:00 pm) to receive your hardware
   token. This will be linked to your user account and pre-registered with
   Duo, UCR’s MFA provider.


When no longer in use, it is important that you return the hardware
security token to ITS. To learn more about using hardware security tokens
for MFA, please read the IT knowledge article
<https://ucrsupport.service-now.com/ucr_portal?id=kb_article_view&sysparm_article=KB0012205>
.

If you have questions or concerns related to the Duo Mobile app upgrade,
please submit a ticket
<https://ucrsupport.service-now.com/ucr_portal?id=sc_cat_item&sys_id=c7ed7b211b2c9510609f86e9cd4bcbba>
or call the IT Help Desk at (951) 827-4848 Monday to Friday, from 8 AM to 5
PM.


Sincerely,

Sureyya Tuncel

Manager, Identity and Access Management



Information Technology Solutions

Computing & Communications Building

900 University Ave.

Riverside, CA 92521

951-827-4848 | its.ucr.edu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ucr.edu/pipermail/tech-bulletin/attachments/20260122/19ce7d13/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image
Type: image/png
Size: 40409 bytes
Desc: not available
URL: <https://lists.ucr.edu/pipermail/tech-bulletin/attachments/20260122/19ce7d13/attachment-0001.png>

More information about the Tech-Bulletin mailing list