Skip navigation
Federation

Secure Access For All Apps

Easily integrate Duo’s MFA with your federation to protect access to on-premises and cloud applications.

Duo + Federation

Secure access to any of your on-premises and cloud applications with Duo’s multi-factor authentication (MFA) solution. Duo offers out-of-the-box integration with Active Directory Federation Services (ADFS), PingFederate, Okta, OneLogin, Centrify and many others.

Allow your users the flexibility of choosing different authentication methods at login, including Duo Push, Universal 2nd Factor (U2F), one-time passcodes (OTP), phone callback and more.

Secure Single Sign-On (SSO)

Duo can also federate identities to cloud applications using SAML. With Duo’s MFA and secure single sign-on (SSO), you can provide a single dashboard for your users to access all of their on-premises and cloud applications.

For more granular security policies, you can set different policies for each application based on risk. For example, set higher security requirements for access to Office 365, and a lower policy for access to Zoom.

Complete Device Visibility

Get insight into all devices accessing your federation services with Duo’s Device Insight, which populates a dashboard of data reporting on the security health of your devices. Build an accurate catalogue of all desktops, laptops and mobile device, including managed or unmanaged devices.

Get visibility into the security health of your devices, including any out-of-date operating systems (Windows, macOS, Chrome, etc.), browsers, Flash and Java.

Enforce Access Security Policies

Set and enforce security policies based on the roles of your users and devices with Duo’s Endpoint Remediation.

For example, administrators can create a policy to prevent all employee-owned and personal devices from accessing all applications managed by their federation provider. This can reduce the risk associated with personal devices, which may not meet your corporate security standards.

Ready to Get Started?

Try out Duo Access for 30 days to experience Trusted Access.