D220: Duo Release Notes for July 23, 2021

Hello everyone! Here are the release notes for the most recent updates we’ve made to Duo.

You can subscribe to notifications for new release notes by following the process described here. If you have any questions about these changes, please comment below.

What’s in this release?

New and updated applications

New features, enhancements, and other improvements

Bug fixes

See all bug fixes


New and updated applications

Duo Authentication Proxy version 5.4.0 released

  • Now suppresses system restarts by the Microsoft Visual C++ Redistributable installer during Authentication Proxy installation on Windows.
  • Improves the error messaging when user msds-principalname lookups fail.
  • The configuration checking performed by the connectivity tool now reports common misconfigurations for service account and authentication type combinations.
  • Improves the log messaging when the Authentication Proxy attempts to determine use of password and factor concatenation.
  • Improves the error messaging when LDAP authentications fail because the service account bind failed.
  • The SIEM logging output to authevents.log now includes the client section name whenever possible.
  • The Windows-only password encryption utility now also decrypts previously-encrypted passwords in a configuration file.

Duo Mobile for iOS version 3.60.0 released

  • Various behind-the-scenes improvements and minor bug fixes to enhance your authentication experience.
  • Preview the upcoming Duo Mobile version 4.0.0 release for iOS by signing up on Duo.com.

Duo Mobile for Android version 3.60.0 released

  • Various behind-the-scenes improvements and minor bug fixes to enhance your authentication experience.
  • Preview the upcoming Duo Mobile version 4.0.0 release for Android by signing up on Duo.com.

New features, enhancements, and other improvements

Hardware token information can now be exported as part of Users list

  • In the Duo Admin Panel, you can now export the hardware tokens attached to each user, including the serial number and type of token, when downloading the Users list.

Added ability to delete enrollment codes from the Pending Enrollments page

  • You can now delete enrollment codes directly from the Pending Enrollments page in the Admin Panel.

Additional context added to Authentication Log and Endpoints details page to identify when device data may be inaccurately reported by the browser

  • The Authentication Log in the Admin Panel now reports when device information is provided by the browser or by the Duo Device Health application, and includes additional context where device information may not be accurately reported by a particular browser (such as those that have frozen reported OS versions).
  • This information will also appear on an endpoint’s details page, labeled as “Unverified” in the device details, if device information is being reported by a browser that may not accurately report the OS version.
  • Duo recommends using the Device Health app to collect accurate endpoint data. Related: Duo Knowledge Base article. The Device Health app is available on Duo Access and Beyond editions.

Bug fixes

  • Fixed an issue that prevented pending enrollments from being displayed on the Pending Enrollments page in the Admin Panel for users with no associated email address. The Resend button will now be disabled in this case, and performing a Resend All action will alert the administrator when users with no email address are present in the list.
  • Fixed a bug where activating Duo Push for an administrator sometimes created two separate logs in the Administrator Actions report.