We’re trying to tighten up our ability to respond to an outage and had question:
What is the difference between:
- Setting Bypass in the Duo Admin page, and
- Running the primary only mode on the Proxy server.
I’m thinking #1still requires communication between a DUO user and the DUO cloud service, but wondered whether #2 might not require the user contacting the cloud service.
Reason I’m asking here, is I suspect a recent problem may have been related to internet connectivity, as one of the symptoms users experienced was they received their DUO phone requests late, or were able to respond to a DUO request, but never completed because the application (our VPN login) timed out because of the slow round-trip.