Skip navigation

Single Sign-On (SSO)

Single sign-on is a way of verifying a user’s identity to authorize access to multiple applications and websites with just a single set of login credentials. Duo SSO provides users with an easy and consistent login experience for every application — cloud or on-premises. Start your passwordless journey here with SSO.

Get Our SSO Book

Duo Central dashboard, a cloud-hosted portal to access Duo Single Sign-On applications, bookmarks and device management.

How SSO Can Benefit Your Organization

Duo SSO safely puts essential applications at your users' fingertips without them having to remember or enter multiple login credentials. Duo SSO enables seamless, secure access to the broadest range of cloud and on-premises apps including those built on SAML 2.0 and OpenID Connect (OIDC) standards.

Arrow in a circle pointing down

Decreased Risk for Industry Compliance 

SSO means users don’t have to remember multiple passwords, reducing the risks associated with credential compromise and breaches. With cyber insurance requiring multi-factor authentication (MFA), Duo has you covered for secure access for the workforce. 

Image of a clock with an alarm on

Simplified Access to Save Time and Cost 

SSO provides simplified access for today’s hybrid work environment, allowing users easy access to all permitted apps in seconds. By reducing login credentials and offering self-service, Duo helps save time and cost for onboarding to applications, password resets, device management, and more. 

Icon of a fingerprint.

SSO for a Passwordless Future 

Planning for passwordless? SSO is an essential step in your journey! SSO dramatically reduces reliance on passwords from the start, and Duo Passwordless relies on SSO for secure authentication. 

Discover Passwordless Authentication

Single Sign-On with Duo 

Duo's cloud-based SSO works seamlessly with your identity provider and Duo's MFA to enable secure access and help protect virtually any cloud, web or on-premises app. Watch our video to see how Duo creates a user-friendly SSO experience while providing the data security you need. 

SSO Products that Work in Any Industry

Duo enables organizations to adhere to regulatory compliance requirements (e.g., PCI DSS, HIPAA, etc.) for verification of users.

Icon of an apple.


Save money and time on school cybersecurity with Duo's easy-to-use solutions. 

Explore Our K-12 Solutions

Icon of a bank.

Financial Services

Verify users identities and check device security health to keep financial data and online transactions safe. 

Discover FSP Security and More

Icon of an open book.

Higher Education

Protect student and employee data and meet regulatory reporting and compliance requirements related to identity and access management with Duo (SSO + MFA). 

Protect Higher Ed Generation of Professionals

Icon of desktop computer.


Protect access to your applications and user data while reducing the risk of a data breach with Duo.

Complicated Stack? Discover Flexible Cybersecurity

Icon of a healthcare cross.


Secure patient data by protecting EHR systems and e-prescription software.

Duo Helps Keep Cybersecurity Framework Healthy

SSO Solutions for Everyone

Whether you’re a small to medium business or enterprise-level organization, Duo's SSO provides simplified application access to users and is easy to deploy and manage. Our five key factors tip sheet lets you know what to look for in an SSO solution.

Small to Medium-Sized Business 

Duo's SSO makes life easier for users, since they only need one password, and can access all apps and even update their authentication devices from a web portal, Duo Central. Paired with strong MFA, device insights and controls, and adaptive security policies, it protects and enables access to all platforms and applications from any user, device, and location. 

Enterprise-Level Organizations 

Duo Passwordless requires SSO because SSO is integral to mitigating threats such as stolen passwords and credentials. Duo SSO can authenticate users against your Active Directory or chain to authentication from an existing SSO identity provider you may already use (e.g., Microsoft's Active Directory Federation Services, Okta, or PingFederate) so you can implement a passwordless policy quickly and easily.

Badge: Trust radius top rated 2024

Cisco Duo has received glowing reviews on TrustRadius from our customers. These reviews contributed to us achieving the TrustRadius Top Rated 2024 award in categories such as Authentication, Cloud Computing Security, and Single Sign-On (SSO).

Read our TrustRadius Reviews

Frequently Asked Questions

What is SSO and How Does it Work?

SSO security refers to single sign-on authentication, a method of logging in to multiple applications in one step. Here’s how it works: When a user logs into a system with their username and password, the integrated SSO software generates a digital token. This token is then used to access connected applications, eliminating the need for multiple logins in a session.

Is SSO Authentication Secure?

To secure the SSO login process, adding an extra layer or two of authentication is crucial. Two-factor authentication (2FA), also referred to as multi-factor authentication (MFA), requires at least one identity verification factor in addition to the password. A passcode sent to an email, facial recognition, or answering security questions are factors that can verify a user’s identity. By implementing SSO with 2FA, you not only streamline access but also significantly reduce the risks associated with compromised credentials. It’s a security win-win.

What is an SSO Token?

An SSO token is a virtual key that represents a user’s authentication. It contains information about the user’s identity and permissions, allowing them to access various applications in a session without the need for reauthenticating at every login. Combined with an effective two-factor authentication (2FA) solution, this token simplifies access and streamlines the user experience without compromising security.

How do I Choose an SSO Solution?

When selecting the best SSO solution for your business, look for one that is:

  • User friendly: It should be easy to deploy and manage so users can swiftly adapt without sacrificing security.

  • Integrated with 2FA: Choose an SSO solution that is part of an identity and access management (IAM) platform. SSO and 2FA are a dynamic duo that authenticate users while securing access to the applications they need.

  • Enterprise-ready: Prioritize robust solutions that cater to all types of users, including partners and contractors. A mature SSO solution supports diverse regions, applications, application types (on-premises, web, and client-based), and common protocols.

  • Reliable and scalable: For a growing enterprise, select a solution that offers high availability, strong SLAs, and scalability to support your organization’s evolving needs and expanding user base.

  • Dynamic: Assess a solution’s long-term viability. Does it align with your security goals? Can it adapt with evolving threats? A dynamic solution improves capabilities and support during deployment and beyond.

Single sign-on from Duo provides users with an easy and consistent login experience for every application. Try it yourself.