Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
645
Views
0
Helpful
8
Replies

API call to verify authentication

aghanchi
Beginner
Beginner

‎09-08-2023 01:40 PM

Is there an API call I can make to confirm if the username for a particular set of Client ID and Client Secret is currently Duo-authenticated (authentication not expired)? Taken from the C# example project, the RedirectPermanent(promptUri) call actually takes the user to the prompt page of the duo api site. Is there a call that I can make just to make sure that the username is already duo-authenticated and I don't need to make the RedirectPermanent(promptUri) call again?

 

0 Helpful
8 Replies 8

DuoKristina
Cisco Employee
Cisco Employee

‎09-11-2023 11:25 AM

By design you have to send the user back to the Duo service to verify not just that they have a valid remembered device authentication session, but also to complete the device access and security posture checks required by the effective Duo policy for that application and user. Like, they may have a valid authentication session, but their Duo admin may have changed the minimum OS patch version required to access anything, and sending the user back to Duo performs that check and blocks the user from access until they update their OS.

Duo, not DUO.
0 Helpful
</