Gallop Technology Group
Ranking Arizona Image
Not yet a client? Click here...
480-614-4227
Info@GallopTechGroup.com
  • Youtube
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram
  • Mail
  • Contact
    • Our Support Portal
    • Clients Tickets Portal
    • New Client Intake Form
    • New Client Technical Questionnaire
    • Join Our Family
    • Join Our Newsletter
  • Resources
    • Blog
    • Events
    • Videos
    • Join Our Newsletter
    • Free Domain Security Check
    • Free Hacking Demo
    • Free Incident Response Plan Review for your Business​
    • Downloadable Checklist
  • Support
  • Solutions
    • Cybersecurity
    • Secured Cloud
    • Voice Over IP (VoIP)
    • Managed IT
    • Fractional CTO
    • IT Projects & Services
    • Legal Technology Solutions
  • Company
    • About Us
    • Team Bio
    • Testimonials
  • Home
  • Search
  • Menu Menu

Notice: If you are having issues using our chat support button below, please submit a ticket here.

Activating Offline Access with Duo Mobile

Offline Access for Duo Windows Logon

Offline access for Duo Windows Logon helps you log on to Windows systems securely even when unable to contact Duo’s cloud service. You can activate one method for offline access, either Duo Mobile on iOS or Android or a U2F security key.

If your organization allows you to use this feature, you’ll see the offline activation prompt after successful Duo two-factor authentication when you log in to, unlock the workstation, or approve a user elevation request while the system is online and able to contact Duo’s service. Check with your organization’s Duo administrators or Help Desk to verify availability of Offline Access on your workstation.

Activating Offline Access with Duo Mobile

Activating Offline Access with Duo Mobile

    1. Select Duo Mobile Passcode and click Activate Now to begin setting up offline access (or click Enroll later (May prevent offline login) to set it up another time).

rdp offline activate duo mobile

    1. Scan the activation QR code using the Duo Mobile app installed on your iOS or Android device. Tap Add in the app and then tap Use QR code to begin adding the account by scanning the QR code shown by Duo for Windows.

rdp offline activate duo mobile

    1. Enter a name for the new offline access account in Duo Mobile and tap Save to continue.

rdp offline activate duo mobile

    1. Tap the new account you just added for your Windows computer in the Duo Mobile account list to generate a six digit passcode.

rdp offline activate duo mobile

    1. Enter the passcode from Duo Mobile (without a space) into the offline activation screen on your computer and then click the Activate Offline Login button to finish setting up offline access.

rdp offline activate duo mobile

Activating Offline Access with a Security Key

Duo’s offline access works with these security keys:

  • Yubico brand keys supporting U2F/FIDO2
  • Google Titan
  • Feitian ePass FIDO
  • Thetis FIDO

HyperFIDO tokens are not supported for offline access activation, nor are simple OTP passcode tokens or Duo D-100 hardware tokens. If you’re not sure whether your security will work, ask your organization’s Duo administrator or your IT Help Desk.

To activate your security key for offline access:

    1. Select Security Key (Yubikey) and click Activate Now to begin setting up offline access (or click Enroll later (May prevent offline login) to set it up another time).

rdp offline activate security key

    1. Duo for Windows Logon attempts to contact your security key. If you don’t have it plugged in, go ahead and insert it. You should see the security key begin flashing, and the Duo screen say Security key found – Tap to enroll. Touch your blinking security key to register it.

rdp offline activate security key

    1. Tap the security key again to verify.

rdp offline activate security key

    1. If successful, the Duo offline activation window says Security key verified – enrollment complete. Click the Activate Offline Login button to finish setting up offline access.

rdp offline activate security key

Authenticating with Offline Access

Once you’ve activated offline access for your account, when your computer isn’t able to contact Duo’s cloud service you’ll automatically be offered the option to login with an offline code or security key (depending on which type of device you activated earlier) after successfully submitting your Windows username and password during system logon or after entering your password in a UAC elevation prompt (if User Elevation is enabled).

If you activated Duo Mobile, tap the entry for your Windows computer in Duo Mobile to generate a passcode, enter it into the Duo prompt, and click Log In.

rdp offline auth duo

If you activated a security key, you should see it start blinking. Tap your security key to log in.

rdp offline auth security

The offline two-factor authentication prompt shows you how many remaining offline logins you have left, or the last day you’ll be allowed to authenticate using offline access (depending on which option your organization’s administrator chose when enabling offline access in the Duo Admin Panel).

rdp offline auth

Once you reach the offline access limit, the Duo prompt informs you that you must complete online authentication to Duo before you can log in again with an offline passcode. Offline access refreshes when you perform an online Duo authentication.

If Duo Authentication for Windows Logon was installed with the fail mode set to “fail closed”, then a user who does not activate offline access on that computer may not log in while disconnected from the internet. Make sure to complete offline activation the next time the computer has internet access.

rdp offline no

Reactivating Offline Access

If you need to add the Windows Offline account to Duo Mobile on a different phone than you originally used for activation, you can do this from the online Duo MFA prompt.

IMPORTANT: Only one phone may be activated for offline access at a time. Activating offline access on another phone invalidates the previously activated phone.

If you restored the Duo Mobile accounts on your phone with Duo Restore, reactivating offline access won’t reconnect the offline account that was restored. Instead, a second account for offline access will be created. Avoid confusion by deleting the restored offline access account before performing reactivation from the online Duo for Windows MFA prompt.

    1. With the Windows computer connected to the internet, log in with your username and password.
    2. Click the Replace/Reconnect an offline device link on the left side of the Duo prompt to begin. If your Duo for Windows Logon application is configured to automatically send a push request to your phone, you can cancel the authentication in progress and click the link on the left (don’t approve the request on your phone).

rdp offline reactivate

    1. Next, you’ll need to complete Duo authentication. Click on an available method and approve the login request.

rdp offline reactivate

  1. Continue the activation process by scanning the QR code with Duo Mobile on the replacement phone and entering the verification code when prompted, just like the first time you activated an offline access device.

Pages

  • About Us
  • Activating Offline Access with Duo Mobile
  • Add a new user to your domain
  • Admin information
  • Bartlet Brebner – Client Success Story
  • Beits Livneh’s “Landing Page”
  • Billing Portal
  • Blog
  • Checklist
  • Checklist Download Form
  • CLE Certificate
  • Client Computer Quote
  • Client Quote Request Desktop
  • Client Quote Request Laptop
  • Computer Cleanup Request
  • Configuring Office 365 Account on your Phone
  • Contact
  • Continued Education Classes (CLE)
  • Cyber Security – Employee
  • Cyber Security – Manager
  • Cyber Training
  • Cybersecurity
  • Diane Drain – Client Success Story
  • DNS whitelist request form submission
  • DUO 2FA SETUP
  • e-Book Download Form
  • Emanuel Kallina – Client Success Story
  • Employment Schedule An Interview
  • Eugene Kadish – Client Success Story
  • Event Dashboard
  • Event Organizers
  • Event Venues
  • Events
  • Fractional CTO
  • Free Domain Security Check
  • Free Incident Response Plan Review for your Business​
  • Gallop Tech: Convert PDFs to Word & Image Files Easily
  • Gallop Tech: Install TeamViewer QuickSupport on iOS/Android
  • Gallop Technology Group
  • Gallop Technology Group: Adding ACH Payment to Billing
  • Gallop Technology Technical Pre-Employment Questionnaire
  • Gena Sluga – Client Success Story
  • Got you!
  • GRSP
  • Guide To Two-Factor Authentication
  • Hacking Demo
  • How to Add ACH or Credit Card Payment Method
  • How to confirm your login password for Windows
  • How to Log Off your Cloud Server Session
  • How to Request Billing Portal Access
  • How to send an encrypted email on Outlook
  • How to set up Sonicwall VPN on Windows
  • Hybrid Workforces, Simple Security — A Practical Guide for SMBs
  • Incident Response Data Collection
  • Information request
  • Internal Quote Request
  • IT Projects & Services
  • James Reed – Client Success Story
  • Join Our Family
  • Join Our Newsletter
  • Juana Galeno – Client Success Story
  • Legal Technology Solutions
  • Live Webinar – Hybrid Workforces, Simple Security — A Practical Guide for SMBs
  • Lynda Shely – Client Success Story
  • Managed IT
  • Michael Bar – Client Success Story
  • Microsoft Licensing Portal
  • Neer Lerner – Client Success Story
  • Net 20 Terms Application
  • New Client Intake Form
  • New Client Technical Questionnaire
  • New Email Account Request
  • Notify of Upcoming International Travel
  • Organizer Dashboard
  • Post an Event
  • Pre Employment Questionnaire Level 2 Engineer
  • Pre Employment Questionnaire – Short Form
  • Price Adjustments 1-1-25
  • Privacy Policy – Gallop Technology Group
  • Proofpoint introduction
  • PSWM Docketing Request Form
  • Quickbooks Maintenance Request
  • Referrals Agreement
  • Referrals Asset
  • Refresh your connection to the server : Logging off
  • Remote Support
  • Remove user from GTG Cloud Server
  • Remove user from your domain
  • Reporting & Statements Request
  • Sarah Fluke – Client Success Story
  • Schedule an appointment
  • Scott Palumbo – Client Success Story
  • Secured Cloud
  • Set up 2FA on Microsoft using Microsoft Authenticator
  • Setting up DUO as your 2FA method for NetExtender
  • Setting Up Email on iPhone or iPad – Gallop Technology Group
  • Spam Filtering
  • Special Offer
  • Submit Organizer Form
  • Submit Venue Form
  • Support
  • Team Bio
  • Terminate Computer
  • Terms of Service
  • Terms of Use
  • Testimonials
  • Thank you
  • Ticket lifecycle
  • Ticket Status
  • User Information
  • Users Data Collection
  • Vendor data collection sheet
  • Venue Dashboard
  • Videos
  • Voice Over IP (VoIP)
  • Website Migration Request Form
  • Welcome to Amit Donenfeld-Peled’s “Landing Page”
  • Welcome to August Wheeler’s “Landing Page”
  • Welcome to Jerny Samala’s “Landing Page”
  • Welcome to Lonida Tawanna’s “Landing Page”
  • Welcome to Michael Costales’s “Landing Page”
  • Welcome to Michael Edwards’ “Landing Page”
  • Welcome to Richard Demalata’s “Landing Page”
  • Welcome to Robert Valverde’s “Landing Page”
  • Welcome to Sam Batoniashvili’s “Landing Page”
  • Welcome to Shiela Magalong’s “Landing Page”
  • What is my computer name?
  • Whitelist a USB Device
  • Your computer needs to restart!
  • Email Portal
  • Add information to a ticket
  • Submit A Ticket

Categories

  • Blog

Archive

  • July 2025
  • June 2025
  • May 2025
  • April 2025
  • March 2025
  • February 2025
  • January 2025
  • December 2024
  • November 2024
  • October 2024
  • September 2024
  • August 2024
  • July 2024
  • June 2024
  • May 2024
  • April 2024
  • March 2024
  • February 2024
  • January 2024
  • December 2023
  • November 2023
  • October 2023
  • September 2023
  • August 2023
  • July 2023
  • August 2022
  • July 2022
  • June 2022
  • May 2022
  • April 2022
  • March 2022

Gallop Technology Group – Securing What Matters Most: You.

Click Here for Your Free Assessment
480-614-4227 - GallopTechGroup.com - Privacy Policy
  • Youtube
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram
  • Mail
Scroll to top

Gallop Logo White Transparent

Subscribe to our Mailing List

SUBSCRIBE

Gallop Logo White Transparent

Free Domain Security Check

GET YOUR FREE AUDIT FOR YOUR COMPANY’S EMAIL SECURITY AND DARK WEB MONITORING.

Sign up button