I’m a new admin/user and testing out DUO. The first application we’ve chosen to protect is Microsoft OWA. I’ve installed everything and access to OWA is protected. I get a DUO prompt when trying to login as expected. When logging into the ECP I get a DUO prompt and am able to login as expected. If I logout of the ECP and log in again with the same user I do not get a DUO 2FA prompt; the login continues as it did previously without DUO. If I log out of the ECP and then log into that users OWA account I again do not receive a DUO prompt. When I log out of that admin’s OWA account and try to get into either the OWA or ECP account I then get a DUO 2FA prompt.
It appears that something related to the ECP is caching/remembering the login even if I logout. Has anyone tested or experienced this before?