Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
151
Views
0
Helpful
2
Replies

DUO AUTH API HMAC signature

Go to solution
er-praveen1
Level 1
Level 1

‎09-23-2025 10:35 PM

Hi all,

As per the DUO AUTH API documentation, 

Lastly, compute the HMAC-SHA1 of this canonical representation, using your Duo application's secret key as the HMAC key. Send this signature as hexadecimal ASCII (i.e. not raw binary data). Use HTTP Basic authentication for the request, using your integration key as the username and the HMAC-SHA1 signature as the password.

Does this mean any caller is bound by these algorithms? Can I use a stronger algorithm say HMAC-SHA256 or 512?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
DuoKristina
Cisco Employee
Cisco Employee

‎09-25-2025 09:22 AM

Hey, we have a newer signing method using SHA-512 that is not in that document, but is supported by all our API clients on GitHub. You can see those signing details here: https://github.com/duosecurity/duo_hmac_python/blob/main/duo_hmac/duo_hmac.py.

Duo, not DUO.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
DuoKristina
Cisco Employee
Cisco Employee

‎09-25-2025 09:22 AM

Hey, we have a newer signing method using SHA-512 that is not in that document, but is supported by all our API clients on GitHub. You can see those signing details here: https://github.com/duosecurity/duo_hmac_python/blob/main/duo_hmac/duo_hmac.py.

Duo, not DUO.
0 Helpful

Go to solution
er-praveen1
Level 1
Level 1
In response to DuoKristina

‎09-26-2025 05:45 AM

Thanks for the information.

0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents