[/admin/v1/users/[user_id]/tokens ] hello i have to check that the token is malicious or not . so i am thinking to use this [/admin/v1/users/[user_id]/tokens ] and get token again and compare and validate it is right thing i am doing or anyother way...
Forum Posts
Hi, we’ve implemented DUO Universal Prompt in a .Net web app using the .Net DuoUniversal library 1.1.3 published on Nuget. The whole back and forth works great. However, in the very last step where we attempt to exchange the authorization code it jus...
Hi all, I have hit a wall trying to get the admin api to allow my calls to the users endpoint to return data. I am getting a 401 “unauthorized” error but I just don’t see what I am doing wrong. Here is a sample of call that my code produces. {Method...
I deployed Windows RDP on a PC for Windows logins. I can no longer login to that PC because traffic to the Duo server is being blocked. ESET Internet Security is installed on this PC. ESET is set to interactive mode so I normally get a pop-up showing...
Trying to configure GitHub - duosecurity/duo_log_sync to pull logs out of Duo to our non-splunk SIEM. I would like to use the TCPSSL protocol, but can’t figure out what the “cert_filepath” directive should point to. The docs say: # Location of the ...
Hello, I’m trying to get a test application working with Duo in PHP. I’m following all of the instructions on GitHub, found here: GitHub GitHub - duosecurity/duo_php: Duo two-factor authentication for PHP web... Duo...
I’m trying to find unused devices (old phone, tokens, Yubi key, etc.) by correlating the information in /admin/v1/users with /admin/v2/logs/authentication but am a bit confused by identifiers. The device field in the authentication logs matches up r...
Resolved! Return url in v2 SDK
Hi, how do we keep track of the original url that client requested. Currently, I am only able to redirect the client back to the default Deafult.aspx page after MFA authentication. I wanted to know, how can I send them back to the original URL they r...
Resolved! Powershell API Authorization Encoding
I am working in an environment where I am unable to load custom modules, so the github solutions really won’t work for me. The authentication encoding method is a horribly twisted process. The latest attempt is (Keys and data are from the Authenticat...
Hi, Im hoping im in the right group here. Im looking to create a power automate flow integrated with either PowerApps or power forms to allow users in my network update their profile information such as their phone number and push an activation code ...
I can do GET command successful via postman, in below resultset . but when try POST with everything same and adding parameters to body as username with x-www-form-urlencoded type. It shows below error. { “code”: 40103, “message”: “Invalid signature ...
Has anyone used the code from Dan Nash’s public page for the HMAC Sha-1 password. https://www.postman.com/dn1997/workspace/dan-nash-s-public-workspace/folder/6074515-fab97289-1544-478a-9ea0-28bffcc6571b?ctx=documentation I got the hash, but still com...
I am using a PowerShell script to attempt to sync a user to a directory. I am getting back a {"code": 40401, "message": "Resource not found", "message_detail": "Directory not found", "stat": "FAIL"} Generally when I modify the script I’m getting an ...
I’m using the DuoUniversal C# SDK. Everything works fine most of the time. But intermittently, the call to Client.ExchangeAuthorizationCodeFor2faResult() throws an error because the call to the /oauth/v1/token API has returned a 400 Bad Request res...
Hello, I want to implement Duo MFA authorization into my asp.net website (4.5.2 framework), does Duo V4 SDK supports this framework version?
