I’ve gotten Duo authentication working on Citrix Gateway (v12) as well as OWA. The only weird thing is that when logging in through the Citrix Gateway, I have to tell it to send me a push or enter the code twice before letting me through. I’ve double checked the authorization policy and it’s only set to the Radius server. Any ideas where to look? OWA is still only asking for it once.
Here’s my proxy.cfg (with keys removed for obvious reasons): Duo - Pastebin.com