Policy & Access Control

Wondering about DUO and bypassing app

The intuition is requiring 2FA for a slight increase of security. I'm looking to give users the ability to either use the encrypted app or to use another means like a code via SMS or a phone system that isnt encrypted. Is this possible to set up for ...

Passwordless without Duo SSO?

Are there any plans to extend the MFA APIs in a way that would make Passwordless auth possible outside of Duo SSO? (Yes, I know this will require careful integration to ensure security is maintained.) In my environment, AD auth (and using Duo’s SSO i...

Authentication outside enterprise network

Hello all,I am currently running into an issue if a laptop is connected to our enterprise network (directly - no VPN), end-users are able to us 2FA and connect no issue. Now if the same user connects to the public WIFI they will go through DUO 2FA l...

Need help clearing default strings from ldap_filter

I am trying to set up the authentication proxy to connect to an open ldap server. The authproxy_connectivity_tool is telling me that I’m not getting any search results because of my ldap filter. The meaning full section is… The Auth Proxy did not ...

RDP via Network Gateway - multiple Gateways?

We have multiple, disconnected networks where we have the DNG installed. We’ve been using the RDP functionality for a while in beta and want to expand it to other networks now that it’s in GA. But I don’t see a way to add another gateway to the Heal...

SMS no longer sends me a code?

Not sure if this is the right place to post this. I use Duo for a few things and one of them is Keeper for my passwords. The push works fine but about two months ago it stopped allowing me to use SMS when the push wouldn’t go through. I hit the SM...

End user impact of changing remembered devices setting value?

I have just joined a new organization where the trust remembered devices setting is configured for 180 days and would like to change that to a shorter value. If I make this change, will any end user who has enabled that setting in their browser need...

Resolved! Windows Logon - conditional access

Hello community, I am in the process of feature validation for Duo and, related to Windows Logon, I was wondering if we could enfore 2FA for laptop outside the enterprise network. In other words, if a laptop is connected to our enterprise network (di...

Resolved! Does the Duo Device Health Application allow you to block VPN access using Radius?

Hi, can I block access to VPN (using radius) if health of the device is not complaint? thank you

2FA Fatigue Testing

Is there a way to send a push to all devices using DUO to test for 2FA Fatigue? Currently we DUO setup with just the green checkmark for authentication and I would like to see if people would simply click it out of habit. It would be a great test to ...

Verified Push for Admins and on Workstations

I’m loving the introduction of the Duo Verified push and the ability to integrate it with risky login policies! The 2x areas that I haven’t been able to implement Verified Push is on the Duo Admin page as well as on the Microsoft Workstation (RDP) lo...

Resolved! Is it possible to change the default phones per user limit?

Hi All, Is it possible to limit the phones per user of registered devices in Duo from 100 to 1? I knew default object limit of 100 phones per user, which I would like to change. https://help.duo.com/s/article/4829?language=en_US Regards, Raima

Resolved! Missing the Call Me option

Hi, Created new free account, add all details include phone number but the “call me” option that I have on another account is missing on the new account. How o solve it?

Corporate Laptop on Home Network

I’m trying to configure my policies to make it as easy as possible for my users. I know, security shouldn’t be easy and may defeat the purpose of MFA. My set up: Cisco Duo, Directory Sync to AD, protecting Google Workspace. We’re a school district. A...

Country mismatch error on Risk Based Authentication

Is anyone else who is trying the new Risk Based Authentication getting users with a “Country code mismatch detected with risk-based factor selection” which doesn’t elevate the auth, it just errors continuously? The scenario is the user’s Access Devic...

Policy & Access Control

Forum Posts

Wondering about DUO and bypassing app

Passwordless without Duo SSO?

Authentication outside enterprise network

Need help clearing default strings from ldap_filter

RDP via Network Gateway - multiple Gateways?

SMS no longer sends me a code?

End user impact of changing remembered devices setting value?

Resolved! Windows Logon - conditional access

Resolved! Does the Duo Device Health Application allow you to block VPN access using Radius?

2FA Fatigue Testing

Verified Push for Admins and on Workstations

Resolved! Is it possible to change the default phones per user limit?

Resolved! Missing the Call Me option

Corporate Laptop on Home Network

Country mismatch error on Risk Based Authentication

Congratulations to the July 2023 Spotlight Award winners!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

Report source IP from Kemp Loadbalancer

Trusted Endpoint for Linux

Video: Apply Duo Policy and Control Features to Reduce Risk

Trust Monitor - Adaptive Authentication

Centos 8 jump server just allowing users through

Change in the remembered devices workflow in the Duo Universal Prompt

Trusted Networks gone?

How to auto push when integrating with OpenVPN Access Server

Free Account missing "authorized networks"

Duo Access Gateway SAML plus LDAP for auto assigning tunnel groups in Cisco ASA