DUO LDAP Proxy multiple pushes

#1

I am in the process of deploying a DUO LDAP Proxy. The issue i am having is that every time i log in, i get multiple pushes to the DUO application.
here is my ldap_server_auto config:
ikey=*******
skey=********
api_host=api-.duosecurity.com
failmode=safe
client=ad_client
exempt_primary_bind=false
exempt_ou_1=CN=SVC DUO,OU=Service Accounts,OU=Domain Users,DC=
**,DC=com
exempt_ou_2=CN=SVC ***,OU=Service Accounts,OU=Domain Users,DC=***,DC=com

i ran the proxy troubleshooting tool and everything squares out. What am i missing? Thank you!

0 Likes

#2

Explore the debug output of your Duo proxy server and determine what types of LDAP operations are triggering the additional authentications. Based on that, you may need to explore some of the optional settings described here like allow_searches_after_bind if your application requests additional directory information after authentication, or allow_unlimited_binds if the application expects to bind multiple times to the directory as the same user in a single connection.

0 Likes