Skip to main content
Version: 3.25

Duo Security

You can use Duo as multi-factor authentication in senhasegura to log in and start sessions.

To configure Duo Security as an MFA solution, you need:

Create an application in Duo

Requirements
  1. Log in to your Duo account
  2. Go to Applications
  3. Select Protect an Application
  4. Type Web SDK in the search bar
  5. Click on the Protect button
  6. Copy the Client ID, Client Secret, and API hostname
  7. Scroll the page to Settings and type the Name of the application
  8. To finish, click on the Save button
Duo Security Web SDK

Enable external MFA solutions

  1. Go to Settings ➔ System parameters ➔ Security
  2. Check the option Enable external Multi-Factor Authentication application
  3. Close the warning message
  4. Click on the Save button
MFA Settings
Caution

When enabling this function, some security mechanisms will be disabled. It will change the SameSite propriety from "Strict" to "Lax". Ensure you have a firewall configured to deny non-authorized sites to access your senhasegura server.

Configure Duo MFA in senhasegura

Requirements
  • Duo API authentication data
  1. Go to Settings ➔ Authentication ➔ Multi-factor authentication ➔ Providers
  2. On the page actions, click on New
  3. Select the Duo Security option
  4. Fill in the following fields:
    • Endpoint with the Duo API hostname value
    • Client ID with the Duo Client ID value
    • Client secret with the Duo Client Secret value
  5. Click on the Save button
Duo MFA settup

Configure Duo as the MFA user

Requirements
  • Network connection between senhasegura and Duo Security
  • Duo Mobile app
  1. On the top-right side, click on your user name
  2. Select the Token option
  3. On the new page, click on the Duo Security option
  4. You will be redirected to the Duo Security setup flow. Click on the Next, then Next and Next again
  5. Click on the Skip for now link to skip the Duo Device Health installation
  6. Select the option Duo Mobile
  7. Insert your Phone number with the Country code
  8. Then, click on the Add phone number button
  9. Click the Yes, it's correct button to confirm your phone number
  10. Download Duo Mobile (if you don't have it) and click on the Next button
  11. Open the Duo Mobile on your smartphone and Scan the QR Code
  12. Click on the Continue button and then Skip for now
  13. To finish, click on the Log in with Duo

You will receive a push notification in your Duo Mobile when accessing the senhasegura solution.

Duo Approval Request