Cisco Duo (“Duo”) is a cloud-based software service that provides customers additional layers of security designed to protect access to proprietary and third party applications. Most applications require a username and password prior to allowing a user to login. When protected with Duo, an application will first internally determine whether the entered username and password are correct before triggering Duo’s workflow by requiring the user to take an additional action before the login process can be completed (e.g., confirming login via Duo’s mobile app, SMS, phone call, or hardware token). Duo differentiates itself from many competitors in that, for security reasons, it does not store any user’s primary credentials to protected applications. This is designed to force an attacker to compromise multiple systems prior to gaining improper access to customer applications. Customers can further check the security hygiene of user devices before granting access and block, notify, or restrict access for users with risky devices. Duo also allows customers to control which internal applications are accessible by remote users to limit exposure to personal information and enforce policies at an application level.
Duo has offerings to help you throughout your journey to a complete, zero-trust security model. Our solution features everything you need to protect your applications and data at scale.
Establish user trust
Verify the identity of all users before granting access to corporate applications and resources.
Gain visibility into devices
Get detailed insight into every type of device accessing your applications, across every platform.
Establish device trust
Check the security posture and verify trust of all devices--corporate and personally owned--accessing your applications.
Enable secure access to all apps
Give your users a secure and consistent login experience to on-premises and cloud applications.