Keep your accounts safe with two-factor authentication by Duo.
In Cerberus Enterprise Version 9.0.5 we added support for DUO Security for 2-factor authentication.
Duo combines modern two-factor authentication with advanced endpoint security solutions to protect users from account takeovers and data breaches.
Two-factor authentication is one of the best ways to protect against remote attacks such as phishing, credential exploitation and other attempts to take over your accounts. Without your physical device, remote attackers cannot pretend to be you in order to gain unauthorized access to corporate networks, cloud storage, financial information, etc.
After successful primary authentication, users simply approve a secondary authentication request pushed to the Duo Mobile smartphone app. Users may also authenticate by answering a phone call or by entering a one-time passcode generated by the Duo Mobile app, a compatible hardware token, or received via SMS (Short Message Service).
1. Sign up for a DUO Account.
2. Log in to the Duo Admin Panel and navigate to Applications.
3. Click Protect an Application and locate Auth API or Web SDK in the applications list. Click Protect this Application to get your integration key, secret key, and API hostname.
Setting up DUO in Cerberus
In the Cerberus Web administration console (desktop or web based), navigate to Server Manager > Security > 2FA and Check "Enable DUO 2FA Integration"
Enter the details of your Duo account. (Hostname, Integration Key, Secret Key) and select Update.
DUO is now enabled and will replace the default HOTP implementation.