D266: Duo Release Notes for May 26, 2023

Hello everyone! Here are the release notes for our most recent updates to Duo.

Public release notes are published on the Customer Community every other Friday, the day after the D-release is completely rolled out. You can subscribe to notifications for new release notes by following the process described here. If you have any questions about these changes, please comment below.

What’s in this release?

New features, enhancements, and other improvements

New and updated applications

Bug fixes

See all bug fixes

New features, enhancements, and other improvements

Now in public preview: Require devices to be registered with the Duo Device Health App to improve security

  • View and manage devices registered with the Device Health App in the Admin Panel under Endpoints > Registered Devices.

Improved WebAuthn authenticator policies

Risk-Based Authentication now provides clearer information about normal Trust Assessment

  • For Duo Advantage and Premier customers who have applied risk-based policies, the Authentication Log provides more detail in the Trust Assessment column when trust is normal.

New passwordless authentication reporting available in the Admin Panel

Adding and removing administrator passkeys improved in the Admin Panel

  • Administrators with the Owner role can no longer delete a passkey from an administrator’s profile if it is the only second-factor authenticator enrolled by an administrator.
  • When Owners add or delete administrator passkeys via the Administrator tab, the change takes effect without reloading the profile page.

New and updated applications

Four new named applications with Duo SSO

Duo Authentication for Microsoft Active Directory Federation Services (AD FS) 3+ for Windows 2012 R2 and Later version 2.0.1 released

  • Corrects an issue where some Internet Explorer (IE) 11 authentications encountered Javascript syntax errors.
  • Corrects an issue in the ADFS-Diag.ps1 support script bundled with the previous release where the application’s client secret value may have been collected with other system information.
  • Improved client logging.

Duo Epic for Hyperdrive version 1.0.1 released

  • Corrects an issue preventing login when a user’s only Duo authentication method is a hardware token.

Duo Mobile for Android version 4.41.0 released

  • Miscellaneous bug fixes and behind-the-scenes improvements.

Duo Mobile for iOS version 4.41.0 released

  • Miscellaneous bug fixes and behind-the-scenes improvements.

Bug fixes

  • Remember me for 30 days option in the Duo Traditional Prompt now works for Verified Push users.