What is Duo
Duo is a two-factor authentication solution that helps organizations boost security by verifying user identity, establishing device trust, and providing a secure connection to company networks and applications.
Why Duo
Duo is fast, easy and flexible. Passwords and even basic Multi-Factor Authentication (MFA) aren’t enough to keep you safe from today’s attackers. Duo gives you the extra layers of protection you need for secure access management. With this setup, Duo two-factor authentication (2FA) is added as a verification option for account unlocking and password resets.
Prerequisites to integrate Duo
- Configure SailPoint Web application and copy ClientID, secret and hostname these details are required for SailPoint integration.
- Add users and enroll them in the application. User should have an account in SailPoint.
Technical Overview:
Here’s the technical demonstration on the integration of Duo
Use case Demonstration – Integration flow:
Please refer to the below video to have an understanding about Duo integration
SailPoint configuration
- The steps to be done in SailPoint tenant for duo integration
- First in SailPoint, integrate the Duo and then check the test connection after successful test connection
- Enable multifactor Authentication in Identity profile
- And select duo web in Password Reset and Unlock Settings
- Now you are all set to use duo authentication
Duo 2FA for Identity security cloud password reset
- With duo integration user can reset his password
- First user has to proceed to reset password
- Enter the username
- Then you should enter the passcode received from duo after successful duo authentication you can able to set new password
Duo 2FA for Identity security cloud Unlock account
- If the user account got locked, then he can unlock his account with duo integration
- First user has to proceed to unlock account
- Enter the username
- After successful duo authentication your account will be unlocked