Solved: Re: User asked to Enter bypass code

shammons · ‎07-18-2024

I am trying to get a better understanding of why a user would be asked to Enter a bypass code when they have setup Duo 2fa? Is it a possibility that their authentication device has no connectivity with Duo?

ccieexpert · ‎07-18-2024

this link explains it well.. it is used when the mobile device is not working or something is wrong with the duo app..

https://help.duo.com/s/article/6327?language=en_US

View solution in original post

ccieexpert · ‎07-18-2024

this link explains it well.. it is used when the mobile device is not working or something is wrong with the duo app..

https://help.duo.com/s/article/6327?language=en_US

shammons · ‎07-18-2024

That would make sense with the location being in a bad service area.

DuoKristina · ‎07-19-2024

Hi there!

>That would make sense with the location being in a bad service area.

The Duo prompt doesn't dynamically change to not offer Duo Push authentication and only offer bypass codes based on the network connectivity of the mobile phone. We do not test for device reachability prior to displaying available options or the user selecting to use push request. This does not explain it.

Some possible explanations are:

- the user does have a iOS or Android device enrolled in Duo, attached to their username, and with Duo Mobile activated for 2FA. But, the effective authentication methods policy for the user's login attempt does not permit use of Duo Push authentication, therefore the Duo UI can only offer bypass code authentication as a fallback.

- The username authenticating to Duo does not have any valid devices attached for authentication and therefore the Duo UI can only offer bypass code as a fallback.

Duo, not DUO.