Integrate Duo with an application

On this page:

Overview

Note:

To view all the content available to you here, use the green Log in button at the top of this page to log into the Knowledge Base.

Most developers who want to protect their applications using Duo will take advantage of the Duo integration provided by IU Login. However, for some use cases (for example, Linux workstation protection, Microsoft RDP, etc.) integration through IU Login is not possible, and developers may need to perform a direct integration. For more, see the Duo documentation.

The following integration types can be approved automatically:

Other integration types can be approved but may require additional time for review. For more about additional integration types and how to implement them, see Remote Access Integrations.

Request Duo integration

Note:
Only IU faculty, staff, and affiliates can request a Duo integration.

To request Duo integration with your applications, contact Tier 2 with the following information:

  • Integration type
  • Integration name (will be displayed to Duo Push users)
  • Group or departmental email address

Support staff will review your integration, create it, and send you the integration information via Secure Share.

Once you have the integration information, an integration key (ikey) and a secret key (skey), you can complete installation using the instructions provided for your Duo integration. You only need to create one type of integration per service you wish to protect. For example, a group of servers administered by a single team and all using the same integration type can be protected by a single Duo integration.

You should protect your secret key like a password. Never share your secret key with unauthorized individuals or send it in email. To share your secret key with authorized individuals, use Secure Share. If you suspect that your secret key has been compromised, immediately contact Tier 2 to have it reissued.

Integration keys are not sensitive and can be communicated by email.

Do not share API keys across services boundaries. API keys can be reviewed periodically and inactive keys removed. UITS will attempt to contact application owners before their keys are removed.

For assistance configuring your Duo integration, contact Tier 2.

Related documents

Set up a WordPress Duo integration Set up a Unix Duo integration (for Linux and Unix systems) Set up a Web SDK Duo integration Set up a Drupal Duo integration

This is document bfyo in the Knowledge Base.
Last modified on 2024-02-05 13:01:51.