Unable to log in even after enrolling user in Duo — Missing auth

NetFlowHunter · ‎08-05-2025

Hello, I'm new to Duo and currently setting up user access. I encountered the following issue:

When I attempt to log in, I receive this error message:

Unable to log in
You don't have an authentication option that would allow you to access this application. Contact your IT help desk for assistance.

Here’s what I’ve done so far:

I went to the Users section in the Duo Admin Panel.
I found the affected user and enrolled them with a mobile device.
Despite being enrolled and having the device assigned, the user still sees this error when trying to log in.

My questions are:

What could be causing this error even though the user is enrolled and has an authentication device?
Are there any additional steps I need to take to enable authentication methods for this user?
Should I check the application's policy settings or something else in the Duo Admin Panel?

Any help or guidance would be greatly appreciated. Thanks in advance!

DuoKristina · ‎08-12-2025

Usually that message in the prompt means that the application's effective policy for authentication methods requires something the user does not have, such as a user has Duo Push activated but the application may only allow use of WebAuthn platform authenticators.

Try using the policy calculator to see which authenticators you're allowing for that application.

This could also happen if you are using risk-based factor selection, and the user's activity triggered stepped-up authentication, which means they have to use one of our designated "more secure" methods to clear the step-up state. Learn more about that here.

Have you tried the AI assistant in the Duo Admin Panel yet? One of the things it's designed to do is help you troubleshoot user access issues. You can ask it why user x could not log in and it will give you some suggestions.

Duo, not DUO.