Skip navigation

Ars Technica

“You hear horror stories about trying to rev up security in your organization, but Duo is so easy to setup and integrate into your daily work flow. You don’t even notice it, plus you have the peace of mind of having this huge layer of security on.”
— Jason Marlin, Director of Technology

Highlights

Journalists need secure access to a single Wordpress dashboard, at all times, from any location, while traveling, and when breaking news is happening

Ars Technica’s security team needed to find a way to ensure that only the people authorized to access their Wordpress site were allowed in

Needed a solution that would play well with Wordpress

The Challenge

Ars Technica is a trusted source for technology news, tech policy analysis, breakdowns of the latest scientific advancements, gadget reviews, software, hardware, and “nearly everything else found in between layers of silicon.” They pride themselves on offering readers the “unparalleled marriage of breadth and depth in technology journalism” in a world of meaningless click-bait fodder.

Timing is critical and so is security

That wealth of technology news is created by a stellar team of writers, based all over the world, including North America, the United Kingdom, and the Netherlands. Those writers need access to a single Wordpress dashboard, at all times, from any location, while traveling, and when breaking news is happening. Timing is critical.

Ars Technica’s security team needed to find a way to ensure that only the people authorized to access their Wordpress site were allowed in. “Probably the easiest way for someone to deface an editorial website is to obtain the login credentials from someone with authorized access,” says Jason Marlin, Director of Technology at Ars Technica.

They needed two-factor authentication.

The Solution

Some of the security writers had been asking their IT team at Ars Technica for two-factor authentication, Jason told us. They knew they needed a solution that would play well with Wordpress and, after evaluating several vendors that integrate with Wordpress, they looked at Duo, which they were already using for SSH 2FA. “When we installed the demo on our staging environment,” Jason says, “we knew Duo would work exactly how we wanted it to.”

What did Ars Technica’s busy writers think of Duo at first?

“Once our users saw how slick the login was and how seamlessly it worked, they were on board with Duo.” Jason added that once they realized they could use Duo to manage all their personal two-factor accounts, replacing the need for Google Authenticator, they were really keen on it and didn’t mind downloading the Duo Mobile app on their phones.

Now that Ars Technica has been using Duo for awhile, we wanted to know what sort of additional feedback Jason had gotten from his team of writers and users: “Not much feedback. (laughter). Seriously, no one mentions it, so it must be working really well,” says Jason. “Even when we bring new writers on, we don’t hear anything. I think that really speaks to how easy the signup process is and how easy Duo really is to use.”

“I’m thoroughly impressed with how seamless it all is,” says Jason. “You hear horror stories about the new security model and the difficulty in revving up security in your organization, but Duo is so easy to setup and integrate into your daily work flow. You don’t even notice it, plus you have the peace of mind of having this huge layer of security on.”

Ready to Get Started?

Try out Duo Access for 30 days to get the full Trusted Access experience.