I have a few Linux machines that have been setup with two-factor authentication for logins. Is there a way to hash or salt the Secret Key for the Unix application and apply it to the pam_duo.conf file? I know there’s a Windows password encryption too...
Forum Posts
Hi, I’m wondering if anyone could point me in the right direction for DUO MFA best practice configuration please?
Hi A while back i setup DUO and setup 2FA for my laptop, i dont remember how, but ever since then i get the message The username you have entered is not enrolled with DUO Security when i try to login to my laptop. I had to change my account type to b...
We are successfully using AD (Windows Server 2019) with DUO for our 2FA, but we have a problem with one particular user. When they log in to the server there is absolutely no communication between the server and DUO. The user gets a message saying th...
Really struggling to get duo sso to connect to my google workspace as an authentication source. I’ve followed to official guide to the letter and feel like im missing something. Am i expected to manually create users in duo that are still SSO based i...
Hi Duo Community, I noticed that when I export the authentication log to csv, the fields for Alias and Email are always blank even though email/alias is set for every user. Are these fields related to synced users? We don’t currently do directory s...
Hi all, Wonder if anyone can assist with an issue we’re having? The issue is, after inputting our username and password on our organisation sign in page, we receive a ‘Oops something went wrong’ message from DUO. This is intermittent, affects differe...
We’ve enabled 2FA on all our named accounts and are now looking at enabling 2FA on our generic accounts. We were thinking to add the users into a policy to deny access but whitelist the public IP’s. Unfortunately, this doesn’t work as access will als...
Good day! 1.-We create a New Microsoft RDP Application. And in this New Application we Activate: -Offline Access -Limit Access by groups -Offline authentication methods = Check Duo Mobile Passcode 2.-Then we set a user to this group for test. 3.-In B...
Hi there! My Google account keeps showing up as “Access Denied” and requests my password to reconnect. After I get a successful “Your account is reconnected” message it takes me back to the home screen where it still says Access Denied. Help? I need ...
Resolved! Authentication keep live
Is it possible for DUO to not ask 2FA for a certain period, like 2 hours from first login. An user might login multiple times to a device/system. Every time entering a 2FA is difficult.
I’m hoping someone can help me out - I’ll try to explain my situation as clearly as possible. I believe the problem lies around Policy and the appropriate settings. I’ve created an application for Palo Alto GlobalProtect using Single Sign On. Every...
Resolved! Using a Yubikey
On our linux machines, secure shell (openssh) is configured to only allow designated jump or bastion servers to log in. Access to the jump servers is controlled by duo. One user, who does not have a supported Android or iOS phone, wants to use a Yub...
Hi As per subject, do accounts not supporting modern authentication, iow bypassing DUO, need a DUO license?
I have many service accounts, all with UID numbers less than 1000 which use ssh, rsync over ssh and sftp. I do not want them to have to use Duo, since they are all accessed with scripts and have very limited access anyway. Root (UID=0) is turned of...