Contents
Add robust two-factor authentication to your VPN, email, web portal, cloud services, etc. with Duo. After successful primary authentication, your users simply approve a secondary authentication request pushed to our Duo Mobile smartphone app. Users may also authenticate by answering a phone call or by entering a one-time passcode generated by the Duo Mobile app, a compatible hardware token, or received via SMS.
Try Duo for Free
With our free 30-day trial of our Duo Advantage plan, you can see for yourself how easy it is to get started with Duo's trusted access.
Your Duo Advantage trial comes with most of the features and functionality of a paid Duo Advantage subscription like:
- Single Sign-On and Passwordless
- Risk-Based Authentication and Trust Monitor
- Identity Security
- Full access to Duo's Auth API, Admin API, and Web SDK
- And more!
New Duo customer accounts don't automatically receive voice telephony. That means you won't be able to use phone calls as a two-factor authentication method for both administrators and end-users. Duo Push, SMS passcodes, security keys, and hardware tokens all remain available.
You also won't be able to make these user messaging customizations:
- Changes to enrollment email text set in the global Settings or during bulk enrollment
- Changes to the text of the Duo Mobile activation email or SMS messages
- Changes to the SMS message prefix
If you require telephony or customized email and SMS messaging as part of your Duo evaluation or subscription, please contact your Duo sales executive or Duo Support.
During your 30-day Advantage trial, you may choose to explore Duo Premier edition instead. To convert your Duo Advantage trial to a Duo Premier trial, visit the Billing page in the Duo Admin Panel once you've logged in and click Try It Free under the Duo Premier plan description.
When your Duo Advantage trial ends, your account switches to the Duo Free plan automatically. You can continue using your Duo Free plan for up to 10 users at no cost. Paid features you enabled during your trial no longer have any effect. If you convert this free account to a paid subscription, we'll restore the settings created during the trial.
Getting Started
To give Duo a try, just follow these steps:
-
Visit the Duo account signup page and enter your information to create an account.
-
Check your email for a signup confirmation email from Duo. Click the Verify Your Email link in the message to continue setting up your account.
-
Follow the steps on-screen to set a password for your Duo administrator account. Your admin username is the email address you used to sign up for Duo.
-
To add a passkey, such as Touch ID or an external security key, click Add Passkey, and follow the prompts from your browser.
If you don't have a passkey device available, you can skip this step. You must add at least one second factor for login verification.
-
Install Duo Mobile on your Android or Apple smartphone and scan the barcode shown on-screen to activate Duo Push two-factor authentication for your Duo administrator account.
If you don't have an Android or Apple smartphone, click the link below the barcode to skip to the next step.
-
Use your new administrator account to log into the Duo Admin Panel. If you added a passkey during account setup, click Passkey to use it for logging in. If you activated Duo Push during account setup, click Duo Push and enter the code shown on your screen into the Duo Push request received on your mobile device.
-
Enroll your pilot users in Duo. We provide several methods for enrollment. Some applications also support self-enrollment by users when they access the protected service.
Your Duo administrator login can't also be used to log into the service or device now protected by a Duo application, so don't forget to enroll a user account for yourself if you didn't already do so when setting up your Duo application in the previous step! -
Decide which service, system, or appliance you want to protect with Duo as a test. We recommend testing with a non-production application to start. The Applications page lists all resources that are linked and protected by your Duo service.
Then, use our documentation to configure the Duo application on your service, system, or appliance.
Effective June 30, 2023, Duo's cloud service no longer supports TLS 1.0 or 1.1 connections or insecure TLS/SSL cipher suites. If you are unsure how this may affect your Duo deployment plans, please see the Duo Knowledge Base article Guide to TLS support for Duo applications and TLS 1.0 and 1.1 end of support for additional information.
-
Start authenticating into your applications with Duo two-factor! Example browser-based Duo experiences shown below.
| Universal Prompt | Traditional Prompt |
 |
 |
Next Steps
Now that you've experienced the ease of adding Duo protection to a test application, your next step is planning a full Duo deployment.
We've prepared a Liftoff guide that walks you through the stages of a typical organization Duo rollout.
Our Liftoff guide includes timelines and milestones, configuration best practices, tips for employee communications and training your support staff, and more!
Other Resources
Questions? Check our administration documentation and the rest of our documentation collections, the Duo knowledge base, or contact Support for help.