Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1350
Views
0
Helpful
1
Replies

Different policies for same usernames in different domains

willd44
Level 1
Level 1

‎02-10-2022 06:58 AM

Is there a way to apply separate policies to same usernames but in different domains?

Policy 1 for user jjones in domain abc.com
Policy 2 for user jjones in domain xyz.com

Labels:
0 Helpful
1 Reply 1

Amy2
Level 5
Level 5

‎02-14-2022 08:14 AM

Hi @willd44, no this is not possible in Duo today because you cannot have duplicate usernames in Duo. You could protect two domains in separate namespaces, such as abc.com and xyz.com as you’ve shared here, by using a separate ad_client section and a separate radius_server section for each domain OR configuring the Duo Authentication Proxy to use duo_only_client for primary authentication. However, usernames must be unique in your Duo account amongst all users. You cannot have two users with the same sAMAccountName in Active Directory either. The only way around this would be to rename one of the user’s sAMAccountNames in AD to something unique. Then you could have separate policies for them as well. I hope that helps!

0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents