skip to main content
Caltech
Information Management Systems and Services
IMSS  /  Services  /  Information Security  /  Duo Multi-factor Authentication  /  Backup & Restore

Duo Backup & Restore

The Duo Mobile app includes backup and restore functionality. The credentials that get backed up and restored can vary, depending on both the type of credential and whether the device is an iOS or Android device. If you use the Duo Mobile app, please review this page to make sure you understand what will and will not be backed up by Duo.

The Duo Mobile app can contain credentials related to Caltech accounts (Duo-protected accounts) and can also contain credentials related to personal accounts (third-party accounts). These two categories of credentials are treated differently by the app and it's important to understand the difference between the two.

Caltech Credentials vs Personal Credentials

Caltech credentials are those related to accessing Caltech systems. You add them to the Duo Mobile app using the Caltech Duo Device Management Portal. For these credentials, the Duo Mobile app supports both the Verified Push authentication method as well as the Passcode authentication method.

Personal credentials are those related to accessing third-party systems. You add them to the Duo Mobile app using a QR code. For these credentials, the Duo Mobile app supports only the Passcode authentication method (not the Verified Push method).

If you want your Duo Mobile app to backup both Caltech and personal credentials, you need to verify the settings in the app to be sure that it is configured that way. See the sections below for more information specific to iOS and Android.

Restoring Caltech Credentials on a new device will automatically deactivate those credentials on the old device. Restoring personal credentials on a new device will NOT automatically deactivate those credentials on the old device.

Duo Restore for iOS

On iOS restore for Caltech credentials is enabled by default so long as the device is set to backup to iCloud and has iCloud Keychain enabled. To restore previously backed up Caltech credentials on a new device, sign in to iCloud, enable iCloud Keychain, and then download the Duo Mobile app. Duo Mobile will locate the previously backed up credentials.

Restore for personal credentials must be enabled manually. To do this, navigate to "Settings" > "Backup third-party accounts" and create a recovery password. Make sure to store this password safely, such as in a password manager, since neither Duo nor Caltech IMSS can restore this password for you if you lose it. When restoring from iCloud backups on a new device, Duo Mobile will attempt to restore third-party accounts. Duo will prompt you for the recovery password you created.

Duo Restore for Android

On Android devices, restore for Caltech credentials requires that Google backup is enabled in the device settings. Additionally, the Google backup in device settings must be configured to include "Apps & app data". Note that this must be the Google account back up found in the Android operating system settings. Backup systems provided by third-party vendors such as Samsung Cloud backup will not work.

Restore for personal credentials can be enabled optionally in the Duo Mobile app settings. In order to enable this option, Google backup must first be enabled in the device settings.