on - edited on by
DuoKristina
What's in this release?
- New features, enhancements, and other improvements
- New ways to add WebAuthn credentials for Passwordless authentication
- Now generally available: SAML encrypted assertions for Duo SSO into the Duo Admin Panel
- Browsers policy now supports Edge Chromium Mobile and Firefox Mobile
- Duo Admin API now supports Generic OIDC and OAuth integrations
- Updated focus management for accessibility and consistency
- Clearer language for Authentication Log phone call authentication entries
- New and updated applications
- Two new named service provider applications with Duo SSO
- Duo Desktop macOS Public Beta version 6.2.1.0 released
- Duo Desktop Windows Public Beta version 6.2.1 released
- Duo Mobile for Android version 4.56.0 released
- Duo Mobile for iOS version 4.56.0 released
- Bug fixes
Hello everyone! Here are the release notes for our most recent updates to Duo.
Public release notes are published on the Customer Community every other Friday, the day after the D-release is completely rolled out. You can subscribe to notifications for new release notes by following the process described here. If you have any questions about these changes, please comment below.
Check out the Guide to Duo End-of-Life and End-of-Support Plans. This guide provides an up-to-date list of current and past end-of-life plans for Duo products.
New features, enhancements, and other improvements
New ways to add WebAuthn credentials for Passwordless authentication
- Once users use WebAuthn credentials from platform authenticators and security keys that require biometric or PIN user verification to log into Duo Single Sign-On (SSO)–protected applications through MFA, those credentials will also be available to use in subsequent Passwordless authentications.
- If WebAuthn credentials from platform authenticators and security keys that require biometric or PIN user verification are registered during Duo enrollment, they will also become immediately available for subsequent Passwordless authentications.
Now generally available: SAML encrypted assertions for Duo SSO into the Duo Admin Panel
- Duo SSO into the Duo Admin Panel now supports encrypted assertions for SAML Identity Providers and Generic SAML Service Providers.
Browsers policy now supports Edge Chromium Mobile and Firefox Mobile
- Browsers policy now lets administrators choose to Always block Edge Chromium Mobile and Firefox Mobile and to warn users if those browsers are out of date.
- Policy for these browsers can be enabled in the Policies section of the Admin Panel (available in Duo Advantage and Duo Premier).
The Browsers section of Policies now lists Edge Chromium Mobile and Firefox Mobile
Duo Admin API now supports Generic OIDC and OAuth integrations
- The Admin API SSO integration now supports Generic OIDC (with four parameters) and OAuth (with two parameters).
Updated focus management for accessibility and consistency
- The Admin Panel and Duo Universal Prompt have an updated focus style for many components to improve consistency with other Cisco products.
Two columns comparing the old and new styles
Clearer language for Authentication Log phone call authentication entries
- When a phone call is used for authentication and the call is not answered, the Authentication Log under Reports in the Admin Panel will list “Call not answered” in the Result column instead of “Error.”
New and updated applications
Two new named service provider applications with Duo SSO
- There are now named applications to protect IBMid via SAML and DNSFilter via OIDC with Duo SSO, our cloud identity provider.
- Reminder: Duo Access Gateway reached the last date of support on October 26, 2023. The new DAG end-of-life date will be March 30, 2024. Please see the Guide to Duo Access Gateway end of life for more details.
Duo Desktop macOS Public Beta version 6.2.1.0 released
- Minor security enhancements.
Duo Desktop Windows Public Beta version 6.2.1 released
- Minor security enhancements.
Duo Mobile for Android version 4.56.0 released
- Miscellaneous bug fixes and behind-the-scenes improvements.
Duo Mobile for iOS version 4.56.0 released
- Miscellaneous bug fixes and behind-the-scenes improvements.
Bug fixes
- When configuring the bypass status field for Security Event Notifications in Duo Trust Monitor, the dropdown arrow would disappear in some cases. This has been resolved.
- Fixed a bug in the Duo Authentication Log that resulted in an integer overflow error in the Risk assessment column when Risk-Based Factor Selection detected a rate of Unrealistic travel that exceeded the 32 bit integer variable limit. Now when this occurs, the Duo Authentication Log will display the message “The location of the most recent successful authentication by this user implies a travel velocity of at least 999 million mph or greater” in the Risk assessment column.
Hi @jmulsman .
You can find the Duo Authentication Proxy installer links at these locations:
- from our Checksums and Downloads page
- From the New Proxy Install section of the Authentication Proxy reference page
- From the Upgrading the Proxy section of the Authentication Proxy reference page
- From the "Install the Authentication Proxy" section of every documentation page for an application that uses the Authentication Proxy; example: RADIUS
- From the the output of authproxy_connectivity_tool utility when an update is available.
Also when an update is available the Authentication Proxy Manager UI will flag this and link to the upgrade instructions in the reference doc (which has the link; #3 in the list above).
Hope this helps!