This article is being updated to reflect new purchasing steps with Aggie Enterprise. Thank you for your patience.

About hard tokens

A hard token is an electronic device that generates one-time passwords for logging into a computer system. This provides an extra layer of security called multi-factor authentication.

Hard tokens have acquired many different names here on campus, however they are all referring the same device. Some names for tokens include DES token, authentication token, 2-step authentication token, two-factor authentication token, multi-factor authentication token, PIN generator, Duo token, or just 'token'.

What kind of tokens can I use?

There are two tokens that are supported for use with Duo:

Duo Token (Duo Digipass GO 6 token)

Students: If you do not have a smart phone, you can use a Duo token (a small piece of hardware that generates the authentication code.) Tokens can be purchased from UC Davis Stores (price $29.99 + tax) or, if you need financial assistance, request one from the AggieCompass Basic Needs Center.

• Available at UC Davis Stores (530) 752-6846 for personal and departmental purchases. Do not purchase a Duo token from any other source.
• Departments can also purchase the token through AggieBuy
• Price - $29.99 + tax
• To purchase from AggieBuy, search "Duo" or "2046355"

SurePassID Token (SPFE-I30) for departmental purchase only

• Available to departments through AggieBuy. Do not purchase a SurePass token from any other source.
• Only available in packs of 10.
• Price is $140 for 10 tokens.
• Suggested token for bulk purchases.
• To purchase:
  1. Go to AggieBuy
  2. Click the e+ sticker within the Punch-out suppliers section 
  3. Go to the Shop Tab
  4. Select Catalog Favorites
  5. Find the Duo Tokens
  6. Click New Configuration
  7. From the next screen, check the box next to SPFE-I30-10pk, enter the quantity of token packs, and add to cart.
  8. Proceed through the AggieBuy purchase process

Frequently Asked Questions

Can a token be reassigned to different user?

Yes. If a department has a spare Duo hard token, IT Express can assign it to a different customer.

How do I enroll a hard token?

Once you have obtained a hard token, contact the IT Express Service Desk at (530) 754-4357 to register the device with your account.  Once registered, you will be able to start using the hard token to login to Duo.

How do I use a hard token?

When you are prompted for a two-factor authentication code, you press the button on the front of the hard token. The token will display a 6 character passcode, which you enter when prompted.

There is no PIN that accompanies the token, it only needs to be assigned to your account, which can be done by contacting IT Express.

Duo FAQs

• What do I do if my hard token is lost or stolen?
• What do I do if my hard token stops working?
• Can a token be reassigned to another person?