Once you federate a custom domain your Microsoft Online tenant with Duo Single Sign-On, all Microsoft 365 applications will redirect those federated users to Duo when they sign in, while cloud-only (non-federated) users continue to log in using the Microsoft Online sign-in form.ĭuo Single Sign-On satisfies Azure AD MFA requirements as of February 24, 2022. Duo SSO acts as an identity provider (IdP), authenticating your users using existing on-premises Active Directory (AD) and prompting for two-factor authentication before permitting access to Microsoft 365. Video Overviewĭuo Single Sign-On (SSO) is our cloud-hosted SSO product which layers Duo's strong authentication and flexible policy engine on top of Microsoft 365 logins. In addition, as sensitive information makes its way to cloud-hosted services it is even more important to secure access by implementing two-factor authentication and zero-trust policies. If a user's primary password is compromised, attackers may be able to gain access to multiple resources. While SSO is convenient for users, it presents new security challenges. Single sign-on (SSO) technologies seek to unify identities across systems and reduce the number of different credentials a user has to remember or input to gain access to resources. Our cloud-hosted SSO identity provider offers inline user enrollment, self-service device management, and support for a variety of authentication methods - such as passkeys and security keys, Duo Push, or Verified Duo Push - in the Universal Prompt.Īs business applications move from on-premises to cloud hosted solutions, users experience password fatigue due to disparate logons for different applications. Duo offers a variety of methods for adding two-factor authentication and flexible security policies to Microsoft 365 SAML 2.0 logins with Duo Single-Sign On.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |