D253: Duo Release Notes for Nov 11, 2022

Hello everyone! Here are the release notes for our most recent updates to Duo.

Public release notes are published on the Customer Community every other Friday, the day after the D-release is completely rolled out. You can subscribe to notifications for new release notes by following the process described here. If you have any questions about these changes, please comment below.

What’s in this release?

New features, enhancements, and other improvements

New and updated applications

Bug fixes

See all bug fixes


New features, enhancements, and other improvements

Duo Passwordless now in General Availability

Verified Duo Push now in General Availability

  • Available at no added cost to all Duo MFA, Access, and Beyond edition customers.
  • By requiring end-users to enter a verification code to approve a Duo Push authentication request, Verified Duo Push adds security from push harassment and push fatigue attacks. It also provides improved fraud reporting from end-users by directing them toward the fraud report option in Duo Mobile when they receive unexpected Duo Push login requests.
  • Improvements to the information displayed by the Duo Universal Prompt after a user logs into an application protected by Verified Duo Push. Please note that these UI improvements have not been applied to the Verified Duo Push authentication required during a Passwordless Push enrollment flow.

D253_01

D253_02

Duo Trusted Endpoints Manual Enrollment with Device Health now in General Availability

  • Duo Beyond edition administrators can now manually add or delete device identifiers in the Duo Admin Panel. These extend Trusted Endpoint policies to protected applications accessed by BYOD and vendor devices that are not managed by the enterprise mobile device management solution (MDM).

Duo Risk-Based Factor Selection now includes more informative configuration menus and logs

D253_03

D253_04

Duo Admin Panel now exports WebAuth & U2F security key list

UX improvements to Admin Directory Sync

D253_06

  • Updated the Admin Directory Sync warning message when a given directory group is assigned to more than one role.
    • Previous message:

D253_07

  • New message:

D253_08

Duo Single Sign-On error page now displays an Error Trace ID

  • Duo Support can use Error Trace IDs to track down related log events for faster and more systematic resolution of support issues.

D253_09


New and updated applications

Duo Authentication Proxy 5.7.4 released

  • Improved logging for LDAP timeouts.
  • The Authentication Proxy Manager and connectivity tool now warn against use of ‘clear’ transport in ad_client with certificates specified.
  • Removes the misleading no reply message in packet RADIUS error message to reduce confusion while troubleshooting authentication failures.
  • No longer duplicates the proxy-state RADIUS attribute when both the RADIUS client and server configuration sections specify pass_through_all=true.
  • The connectivity tool no longer exits prematurely when it fails to connect to a RADIUS server that is not running.
  • Fixed an issue that could result in multiple redundant connections to the Duo SSO service in certain race conditions.

Duo Mobile for Android version 4.28.2 released

Duo Mobile for iOS version 4.28.0 released

  • Miscellaneous bug fixes and behind-the-scenes improvements.

Bug fixes

1 Like