Duo Mobile users will begin seeing a new Duo Security pop‑up in the app stating “Action Required for User Authentication” between now and March 31st, 2026.
This message appears when Duo detects that your mobile app is out of date. The current minimum supported version is 4.85.0, compatible with Android 11+ and iOS 16+. Older versions can still generate in-app passcodes and use other authentication methods, but Verified Push will no longer be supported. To maintain secure access, Duo will begin blocking Verified Push authentication attempts from outdated clients. If you receive this in-app message, you can click “OK” to proceed.
We ask that you update your Duo Mobile app as soon as possible to avoid any impact or disruptions.
For help with updating the Duo Mobile app, please see our FAQ here. If you are unable to update to the latest version of Duo, please review the alternative options listed below:
Using Duo Mobile Passcodes:
Duo’s Time-Based One-Time Password (TOTP) codes can be used as an alternative authentication method and will continue to work with Duo Mobile app versions 4.49 or later using iOS 15+ and Android 11+.
Using Telephony-Based Factors (SMS / Phone Call passcodes):
Telephony-based authentication such as passcodes delivered via SMS or via phone call are available by request and can be used as an alternative authentication method.
To request passcodes via SMS or phone call, please submit a ticket to askit@yorku.ca. For more information on using telephony-based passcodes, please see FAQ #4 on our website here: https://www.yorku.ca/uit/infosec/duo-two-factor-authentication/.
To read Duo’s full knowledge article about this upgrade, click here.