Policy & Access Control

Resolved! Allowing only Duo Users to log in

Hello, Sorry if this has been asked before, I’m not able to find the answers. Is there a way using Duo to only allow users that are enrolled to log in: 1 - Joe is a Duo user 2 - Pete isnt I dont want Pete to be able to take Joes laptop with Duo insta...

How to invoke Duo challenge in RDP based on local group membership

Hi all, I wanted to configure duo in RDP that will, let’s say, challenge members of some local groups (like local administrators group), and will pass through the rest. Anyone could think of way implementing it without use of AD/DUO groups? Meaning, ...

Resolved! New to Duo - Unable to view full Policy

I am new to Duo. I had customized the default Global Policy few days back. But now I cannot edit it and it only has the following: New User Policy Prompt unenrolled users to enroll whenever possible. And cannot create a new one either. Any help?

Horizon View VDI and remembering devices

I was wondering if there is any way to get DUO to remember devices when authorizing access to VMware Horizon View VDIs? I’ve tried searching and came up short, it might be possible if using the HTML client but not sure if I am correct about that, doe...

Force Push Notifications

Hello. I am building an application that does not really use a web browser. When signing up for the service, the user does use a regular browser workflow to signup for our service. At this stage, their pair their ipad/iphone with our app normally. Ho...

Feature Suggestion | Security Scorecard

It would be awesome if you had a report of effective access or configuration for architects/auditors to review. For example, it would be awesome if you could point out weak configs that could expose people to thinks like “self enrollment” feature gi...

Resolved! TLS 1.2 on Admin console

Just received the email about the duo admin console not supporting browsers using cipher versions older than TLS 1.2. I appreciate the notice and transparency, but I gotta say I’m disappointed, Duo. The PCI SSC announced this requirement over a year ...

F5 Loadbalancer/Authorized Networks/ RDS Gateway

Has anyone had problems configuring Authorized Networks in DUO when the RDS Gateway is behind a F5 Loadbalancer? Because the F5 loadbalancer is proxying the connection between the user and the RDS Gateway. DUO only sees the IP address of the F5 loadb...

Resolved! Possible to require DUO to login?

I must just be missing this…I’ve scrolled through here and don’t see it so let me ask: We have DUO working as advertised on all of our desktops. So far, so good. My question is this - if you don’t install the DUO software on an endpoint then you don...

Resolved! Free Account missing "authorized networks"

Hi. We’re on a Free-Account using Duo to protect an MS RDP Server. This works fine in general. The only Option I’m missing now is the “authorized networks”. In another account we have this, but in the actual one I can’t see it in the settings. Is thi...

Resolved! Is there a way to restrict certain Duo users to specific ip address ranges?

Is there a way to restrict certain Duo users to specific ip address ranges? If the IP address for the browser doesn’t match, then deny the login. (Not bypass Duo auth if the IP address range matches…which is a current feature).

Resolved! SIM Swap Attack

Hi there Just wondering, how does Duo protect against SIM Swap attacks. EG A hacker does a SIM Swap on a users Cell Phone.They find a users password by an email Phishing attack,The user can then authenticate via Duo. Is there a way to disable text me...

Policy & Access Control

Forum Posts

Resolved! Allowing only Duo Users to log in

How to invoke Duo challenge in RDP based on local group membership

Resolved! New to Duo - Unable to view full Policy

Horizon View VDI and remembering devices

Force Push Notifications

Feature Suggestion | Security Scorecard

Resolved! TLS 1.2 on Admin console

F5 Loadbalancer/Authorized Networks/ RDS Gateway

Resolved! Possible to require DUO to login?

Resolved! Free Account missing "authorized networks"

Resolved! Is there a way to restrict certain Duo users to specific ip address ranges?

Resolved! SIM Swap Attack

Citrix Receiver with Duo trusted endpoints

Duo trusted endpoints with Okta device trust

Duo Trusted Devices with Google MDM

DUO authenticates without 2FA

Lockouts caused by VPN password spray attack

Disable duo for console login

Risk Based Profile - Details

Local admin account with duo

Using SSO to get into Duo Central

Disable adding new platform authenticators, but keep existing

Operating System policy - Android 15

Protecting RDP - Hardware Token without Automatic Phone Call

DUO Custom Policy Question