Start collaborating
Save the Date! watsonx Hackathon - Pre-TechXchange Conference Event
Securing enterprise applications with second factor authentication is a common practice across the various organizations. IBM Security Verify provides variety of 2nd factor authentication channels for user verification such as Passkey, Email OTP, SMS OTP, Push notification etc. It also supports to integrate with external MFA providers such as DUO. This help organizations to leverage already enrolled factors and ease the user experience. This integration is achieved using Webhooks interface and helps organizational users to continue using existing enrolled DUO factors while accessing 2nd factor protected applications. The DUO MFA factors that are supported by this integration are Duo Push, Duo Mobile passcode and SMS passcode. Follow the details below to configure DUO authenticator with your Verify SaaS tenant.
The integration between Security Verify and DUO is based on auth APIs and need access token for communication. In order to get the token perform the following steps:
Select Purpose as “External MFA” and Provider as “Duo”
Provide “Webhook name” and Contact details (Optional)
Provide the DUO URL and “Integration key” and “Secret key” which was created from DUO tenant
Click “Send test” to verify the connection to DUO is working fine
If the connection is verified then click “Create”
This will create the webhook connection with DUO
Now, configure the “Unique identifier” which is by default set as “Username”. Admin can change it to the user attribute which will be used for searching user record with DUO
Review the configuration and if required do required changes.
Need to make sure that Verify does has the user record which will be challenged for MFA by using DUO factors. The users in Verify can be a regular or federated account. Users can be created or federated in Verify via various means either from UI or using API. To validate users in Verify perform following steps:
Detailed very well. Hope to see more articles like that from you :)