Duo Authenticator Config File

Isn’t there a risk saving administrator account info to the DUO Authenticator config file? I’m hoping I misunderstood something and this isn’t regarded as normal practice.

Not sure which Duo product you’re talking about, but I’m going to guess the Duo Authentication Proxy, in which case you can encrypt the passwords and secrets when installed on a Windows server. That same section of the reference doc also mentions how to implement file access restrictions on Linux to just the account that runs the service.

If you are asking about a different Duo application please clarify.

Thank you DuoKristina, somehow I overlooked this option.