I’m non-techy. I work for a public school district and visit with kids in about a dozen schools. I like having my work email on my phone so teachers can get in touch if they need me. For years we’ve just used the outlook app with no real issues that I’ve noticed. We’re seeing more and more micromanagement and it sucks. We recently got notice that we have to install Cisco Duo on our phones if we want to have our email on it. Should i do that? Or just say no and be ok with being out of contact?
Duo is Cisco’s version of authentication. The only permissions it has on my phone is notifications.
In its current form, it doesn’t appear to let your company’s IT department control your phone.
Do you have any concerns about having it? I mostly don’t want my phone activities or location tracked.
If you are accessing your work email through your phone, you’re going to be pinging the server with your phone’s IP address. Duo isn’t adding any tracking beyond that.
Duo tracks your location. Not exact location but IP address and city.
Only IP address. Location days from IP address is a guess at best
How specific? Most companies can tell if you are connecting to the mail server from an IP in a different city without needing any app to do that.
Just within the city, doing paperwork from home instead of at a campus.
your IP will be the easy give away if they care to audit. a possible solution is to VPN to the campus and nat your traffic from a campus IP, but now we are getting into additional questionable action.
If they’re on their phone they should just make sure they don’t connect to their home WiFi or their campus WiFi on their phone during work hours. All anyone will see them connecting with then is their cell network IP, prolly just an ipv6 address, and there won’t ever be an obvious tell that they are in a specific location in town.
agreed. as long as the administrative requirement is not “all work done from office desk”, and cellular carrier IP ranges are allowed for his specific services, a cellular connection from laptop (cuz tech reasons) works. OP just likely needs a reasonable cya excuse to make things smooth.
I’ve got duo; we had to have it at my uni for 2FA for our school emails. As far as I can tell it really isn’t very invasive. That said, I do think it tracks general location but I don’t believe it goes further than that.