This new control ensures that the Duo Prompt is only shown when it is requested from an “approved application hostname.” This prevents attackers from tricking end users into using the Duo Prompt with malicious copycat websites.
This feature is available to Duo MFA, Duo Access, and Duo Beyond customers.
Added ability to synchronize a single user from the user detail page
Duo Administrators may now synchronize a single user directly from the user’s detail page in the Duo Admin Panel. The link appears in the upper-right section of the page.
Expanded Admin API pagination functionality
Pagination is now enabled (and optional) for the following endpoints. Click the link for the appropriate endpoint to see the maximum set size for each.
This update adds pseudonymous usage analytics that will help us understand how you use Duo Mobile. We utilize this analytics data to improve app reliability and to develop new features. You can opt out of this on the settings page at any time. Learn more about Duo Mobile and privacy.
For 3.24.0 for Android:
Logos for Duo accounts sometimes didn’t update, they will now stay updated.
Behind-the-scenes changes to increase security and stability.
Resolved an issue with Azure Directory Sync. Due to a recent change made by Microsoft to begin requiring multi-factor authentication for some Azure administrator accounts, Duo’s Azure Active Directory sync feature could fail when configured as previously documented. Now, an "Azure AD Sync Failed" event will be logged with the reason "Invalid Access Token," and account owners will receive an email instructing them to reauthorize the affected directory. Learn more in this Knowledge Base article.
The "Not Enrolled" User Count on the Dashboard page no longer includes deleted users.
Fixed a bug on the Azure AD directory page whereby the groups being synced could be incorrectly removed (from the directory’s synced groups) if the user saved other changes before the groups were fully loaded. This affected only customers with a very large number of groups in Azure AD.
Admin Panel SAML login was always directing the admin to the dashboard after successful login, even if they had tried to load a specific non-dashboard page. This is now fixed so that they are redirected to their intended destination page.