About BrianMS

BrianMS · 11-20-2020

I recently set up a Duo Authentication Proxy server. The primary authentication server supports plain authentication only, so I had to establish ldaps (or starttls) for the transport. To do that, I have to set ssl_ca_certs_file to a path pointing to ...

BrianMS · 11-17-2020

I’m trying to set up a Duo Authentication Proxy server and while I’ve made some progress, I’ve just run into an issue I can’t find documented anywhere. We’re using the proxy so we can use Duo for vSphere (6.7). vSphere is set up with an identity sour...

BrianMS · 12-04-2020

Looks like this was a known security flaw, and it was fixed in 5.1.0 . Duo Security Authentication Proxy - Release Notes Duo’s trusted access solution enables organizations to secure access to all work applications, for ...

BrianMS · 11-20-2020

I wasn’t sure what was needed, exactly, so I copied the whole chain. Regardless, the file doesn’t seem to do anything. If I create an entirely blank text file and point ssl_ca_certs_file to it, then restart the DuoAuthProxy service, everything still...

BrianMS · 11-18-2020

For our application (vSphere), it appears that it was a simple matter of choosing the attribute that does not include @ instead of the one that does. Or we could have requested normalization be enabled in our Admin Panel (we don’t have direct access...

BrianMS · 11-18-2020

The problem is all of our users already do exist in Duo. I don’t have access to our Duo Admin Panel (I have to go through a ticketing system to request the iKey, sKey, and API Hostname), but this has been a recurring problem in our deployments. User...

BrianMS · 11-17-2020

It seems that the error message is referring to not finding the Duo username among the default set of returned attributes from the LDAP search request. I found that adding username_attribute=<Our Principal Attribute, user@org.domain> and at_attribute...

Member Since	‎11-17-2020 12:36 PM
Date Last Visited	‎07-15-2023 02:14 AM
Posts	7

User Statistics

User Activity

Duo Authentication Proxy - ssl_ca_certs_file Does Nothing?

Duo Authentication Proxy - Cannot find username

Re: Duo Authentication Proxy - ssl_ca_certs_file Does Nothing?

Re: Duo Authentication Proxy - ssl_ca_certs_file Does Nothing?

Re: Duo Authentication Proxy - Cannot find username

Re: Duo Authentication Proxy - Cannot find username

Re: Duo Authentication Proxy - Cannot find username