Every aspect of your Duo two-factor authentication system can be managed from the Duo Admin Panel. This includes creating and managing applications, enrolling and activating users, issuing and managing SMS passcodes and bypass codes, managing mobile devices, fine-tuning the user experience of your Duo installation, and more.
To access the Duo Admin Panel, navigate to https://admin.duosecurity.com, enter your administrator account email address and password, and click Log In. Your browser must support TLS 1.2, which most modern browsers do by default. If you are concerned about compatibility, please update your browser or check your browser’s SSL implementation here: https://www.ssllabs.com.
After your login information is accepted, click on a second factor. Complete secondary authentication to continue on to the Admin Panel.
|Duo Push||Sends an authentication request to the Duo Mobile app on your device. Approve the request on your phone to log in.|
|Text Me||Sends a passcode via SMS to your phone. Type the passcode in the box where prompted and click Submit. This passcode is good for five minutes.|
|Call Me||Calls you with a passcode. Type the passcode in the box where prompted and click Submit. This passcode is good for five minutes.|
You must activate your administrator account for Duo Mobile separately from your user account to use Duo's push authentication with the Admin Panel. See Managing Duo Administrators for instructions.
If you've forgotten your password, click the Forgot Password link. Enter the email address that you use to log in to your Duo administrator account and click Submit. Check your email for your password reset link.
The Admin Panel dashboard gives you a snapshot of your organization's activity.
When viewing the dashboard keep in mind that we round very large quantities for the dashboard display, but you can click any of the numbers to see an exact count.
The information shown first on the dashboard provides a quick overview of users with bypass or locked out status, inactive users who haven't logged in recently, your total end user count. Click on any of these items to view a filtered list of users.
Click the "Licenses Remaining" link to view the Deployment Progress report, which tracks how many end users there are in your Duo deployment, how many applications you've protected with Duo, the average number of 2FA devices per user, and the top authentication method used over the last 24 hours.
The endpoints summary information on the dashboard indicates how many of your endpoints have outdated operating systems and shows how that number has changed over the last week. Click the "Out of Date OS" or "Total Endpoints" link to view more detailed information on the Device Insight page.
Click anywhere on the interactive graph of your most recent authentication successes and failures to view the Authentication Log, filtered to display the related events.
The Authentication Log lists information about the last ten Duo login attempts, including the following:
You can click the "Full authentication log" link to view all login events.
Along the far right side of the Admin Panel dashboard is our "What's New?" feed, where we'll call your attention to new features and enhancements to the Duo service.
Click on your name in the upper-right corner to access your administrator account action menu. Edit Profile lets you change the name associated with your administrator login, reset your password for the Admin Panel, update your secondary authentication phone number, and activate Duo Mobile for Admin Panel login. You can also click Log Out on this menu to end your Duo administrator session. You'll be logged out of the Admin Panel automatically after 60 minutes of inactivity.
Manage or view different object types by clicking the links on the left side of the Admin Panel. You may be shown a subset of these links, depending on your assigned administrative role.
You'll find Duo's support information on the left side of the Admin Panel as well. Paying customers may click the Support Tickets link on the left create and manage support cases in the customer portal. You'll need your Account ID information from the left side of the Admin Panel if you contact Duo support via phone or email.
Additionally, you'll find your Deployment ID on the left, under your Account ID. Clicking the Deployment ID takes you to the Duo Service Status page, where you can see the current operational status of Duo's cloud systems.
Click the Add New... button in the top right of the Dashboard to quickly create a new user, group, or application.
Use the search field at the top right of the Admin Panel to quickly find a particular user, phone or token device, group, or application.
All administrator roles except Billing can view reports. Clicking the Reports link on the left side of the Admin Panel takes you to the Authentication Log.
The default view shows authentication events for the previous 24 hours. You'll see a visual representation of authentication successes and failures, and a list of authentication attempts that shows the following information:
The authentication log may be filtered by user, application, or group.
Click the Export button in the upper right side of the log display and select CSV or JSON to download a copy of the log. You can also select Print to go directly to your browser's print dialog. If you've added any filters to your current view of the log, the report only includes the filtered results.
The Admin Panel truncates authentication log entry display to the last three months or the most recent 10,000 events (whichever is shorter). To view older authentication events use our Admin API.
The telephony log shows all the phone calls and SMS messages sent by Duo. These could be initiated by administrator login to the Admin Panel, user login to Duo protected services, or device enrollment and activations links sent to users and administrators (as shown in the "Context" column).
The number in the "Credits" column shows how many credits were deducted from your telephony credits balance for each phone call or message.
Click the Export button in the upper right side of the log display and select CSV, JSON, or PDF to download a copy of the log. You can also select URL to obtain a direct link to your current telephony log view.
The administrator actions log shows activity by your organization's Duo administrators. Examples of logged administrator actions include:
Click on the link in the "Action" column to see more details.
The authentication log may be filtered by administrator.
Click the Export button in the upper right side of the log display and select CSV, JSON, or PDF to download a copy of the log.You can also select URL to obtain a direct link to your current administrator actions log view. If you've added any filters to your current view of the log, the report only includes the filtered results.
Duo authentication, telephony, and administrator action log entries are retained indefinitely by default. Change the log retention period to your desired maximum number of days in the “Logging” setting.