Policy & Access Control

We have a conditional access (CA) policy configured in Entra for MFA. Cisco DUO is setup as an external authentication method (EAM). All of the other authentication methods policies are disabled in Entra.We started adding users to the CA policy in ea...

Hi  We are having some issues with a FTD VPN setup where we get certain errors after authenticating but in trying again it lets you in. I have a case open with Cisco but they are very slow to respond. We found that if the user locks out their account...

We are currently using GlobalProtect 6.2.8, and users are using Microsoft Authenticator as MFA for signing into GlobalProtect. We have setup a pilot group to use DUO as MFA for GlobalProtect. When the users click connect on GlobalProtect application,...

I’m loving the introduction of the Duo Verified push and the ability to integrate it with risky login policies! The 2x areas that I haven’t been able to implement Verified Push is on the Duo Admin page as well as on the Microsoft Workstation (RDP) lo...

Scenario: Planning to use DUO MFA for Plao Alto Global Protect VPN users where they Authenticate through Azure AD SSO (Entra ID - Free Version), after Authenticated Duo kicks in for MFA.My query is what will be the traffic flow and whether the Free E...

Duo for Windows Logon 5.1.1 on RDP serverI've added 1 public IP address for testing to a new PolicyThe Policy Calculator shows that the Authorized Network policy will be appliedI log on to the RDP server but am prompted for DUO codeThe Remote Desktop...

I have a Chromebook that is in Kiosk mode and points to a specific URL for timeclock login.  The timeclock system is protected with DUO.  The issue is, after a person logs in to the url with duo and then logs out, when the next person logs in it auto...

We are still in process of rolling out Duo in our environment and only have a small number of users enrolled with no login MFA yet. A lot of these users are getting stepped up authentications because of "risky" logins. The users are unaware they have...

Hello ! This is my first experience with DUO. My goal is to configure a corporate WLAN with single-factor authentication using Duo Cloud. When connecting, the client is redirected to an ISE portal (Sponsor?). This portal then invokes DUO for authenti...

Hello,      We are using Duo for both Remote Access VPN on a Cisco firewall and our Office 365. Recently, password spray attacks against the VPN have been causing some of our users to become locked out of Office 365. We have enabled threat detection ...

I am using AWS Managed Microsoft Active Directory for authentication management. I have set up a RADIUS server and linked it with Duo for 2FA.The authentication process requires a username and password, followed by a 2FA prompt from Duo, which then s...

Dear Team,We're wonder about the trusted endpoint for checkpoint VPN client. let's say it in a way that we are looking for when remote user is connecting to vpn wanted to check the trust like : Ad joined or Device id or others..  any suggestion would...

Hello, We are updating policies within our org and would like to limit the number of users attempting to verify through duo using passcode (duo or sms) when push is available to them. I have created a new policy removing all authentication methods be...

I have installed duo authentication successfully on Linux VM's. When we ssh to the server, we get a password prompt and a duo push notification on our cell phone. However, when we login to the server from the vCenter console, we get a duo push notifi...