Currently integrating some Duo Admin functions to our internal helpdesk system. I’m wondering if there is an Admin API endpoint I can query to get the list of users currently on bypass status (Similar to the Bypass Users tab on the Duo Dashboard). An...
When DUO responds to an Auth request with the asynchronous flag, it returns a transaction id. How long is that transaction id valid for? Say a user confirms a push notification before it times out and i check the authstatus endpoint 10 minutes after,...
You can easily include sections of code in your post using the instructions in this guide. Note: Please be sure to remove any sensitive information such as your password, skey, or IP address before sharing with the community. To include a block of c...
Find topics in our Duo Web SDK forum about using the Duo Web SDK to add strong two-factor authentication to your web application.
Duo’s Admin API forum discusses the functionality of Duo’s administrative API. Find moderated customer questions and content about the Duo Security Admin API.
Duo’s Auth API forum is for user discussions about adding two-factor authentication to different services. Find customer questions and content about the Duo Security Auth API.
A public forum for all your questions about Duo’s API. Troubleshoot API issues and learn from our community how others are protecting their applications.
I am using /auth/v2/auth endpoint for my API to do 2FA. I am doing a HTTP POST ■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■/auth/v2/auth factor=passcode&passcode=123456&username=someuser I get stat=Ok in the response regardless the value of passcode. But from my D...
Hi, When a new user is enrolled but they don’t respond before the activation code times out (i.e. enroll status returns invalid) as far as i can see the only course of action is to use the admin api to delete the user and enroll them again so that th...
Our organization provides our users with a device management portal. We are desiring to provide a “replace device” option that enables the removal and addition of a device and maintains the device order. We would like to avoid administrators havin...
Hello , Is it possible to realize this requirement using DUO API. E.g to support following scenario: User already authenticated , using web app. When user performs specific action, we would like to use DUO API to trigger additional MFA challenge ? ...
Looking at the Administrator Log data and trying to understand a particular value in the “Description” field. This shows up when action = “phone_update”, description = {“regen_mobile”: “”} Has anyone else seen this in their logs? What does this mean?...
Is it possible to send passcode / push notification to registered users phone using DUO auth API in java without a user interface? I tried the sample DUOServlet program and when the servlet is invoked with a request, it returned HTML with multiple ch...
I’ve written an implementation using the java SDK at https://github.com/mlbiam/unison-auth-duo/blob/master/src/main/java/com/tremolosecurity/proxy/auth/DuoSecLogin.java and am running into issues validating the app response. The auth response runs fi...
So I enabled the Accounts API and Admin API in my parent account. I can call both APIs methods successfully including getting back the list of child accounts. However I am really confused because the Accounts API documentation states: Once a customer...
