Re: Duo: love it or not so much?

[Brad Judy <brad.judy () CU EDU>]

You can watch the talk I gave at SPC on deploying Duo as MFA for our HR self-service users here:

http://www.educause.edu/events/security-professionals-conference/2015/0-34000-multifactor-users-six-months

That page also contains a whitepaper that covers the full information that I’d recommend over the slide-deck if you 
want to read instead of watch.

Brad Judy

Director of Information Security
University Information Systems
University of Colorado
1800 Grant Street, Suite 300
Denver, CO  80203
Office: (303) 860-4293
Fax: (303) 860-4302
www.cu.edu<http://www.cu.edu>

[cu-logo_fl]

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Emily 
Harris
Sent: Tuesday, September 15, 2015 11:14 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Duo: love it or not so much?

All:

We're preparing to launch Single Sign On architecture as part of a larger IAM project, and we are looking at our 
options for 2-step verification / 2-factor authentication / whatever we like to call it these days.  We have been 
advised that Duo is a good solution, and I am curious if others on this list have any experiences they can share.  We 
are likely going to go this way, so I am seeking any positive feedback or potential warnings/gotchas we should look out 
for in our implementation.

Thank you so much!

----
Emily Harris
Interim Information Security Officer, CIS
Vassar College
845-437-7221