Duo Release Notes for February 14, 2020

Hello everyone! Here are the release notes for the most recent updates we’ve made to Duo.

You can subscribe to notifications for new release notes by following the process described here. If you have any questions about these changes, please comment below.

New features, enhancements, and other improvements

Instant Restore for Duo Mobile on iOS

  • Automatic account restoration for Duo-protected accounts in Duo Mobile for iOS is now available.
  • Instant Restore requires Duo Mobile for iOS version 3.33.0 or newer.
  • All newly-created Duo customer accounts will have Instant Restore for iOS enabled by default.

WebAuthn Security Keys can now be used in Chromium Edge

  • WebAuthn Security Keys can now be used to complete Duo two-factor authentication in the Chromium Edge browser.
    • Security Keys can be used to authenticate with Duo in Chromium Edge versions 79 and newer.
  • Security Keys must be enabled via Authentication Methods policy in order for end-users to enroll and use them.

Trusted Endpoints now works with Cisco Advanced Malware Protection (AMP) for Endpoints

  • This new integration allows Duo Administrators to block access from an endpoint that AMP has deemed to be compromised.
  • Once the compromise is remediated from within the AMP Admin Console, access is granted, provided existing Duo policy checks are met by both the user and the endpoint.
  • The endpoint will need to be a Trusted endpoint for Duo and have the AMP connector (agent) running on it.
  • Documentation on how to enable and set up the integration is available here.

Username aliases now included in Authentication Log exports and API calls

  • If a user logs in with an alias, it is now included in the applicable Authentication Log export or API call.

Miscellaneous enhancements

  • Duo Administrators can now search for application ikeys in the search bar in the Duo Admin Panel.
    • Results will only be displayed for exact matching keys.
  • Users who have at least one Canadian phone number in their enrolled devices will see the message “1 message per request, messaging and data rates may apply” in the Duo Prompt pop-up message before attempting to authenticate with a passcode.
    • This change was made to comply with Canadian policies.
  • The “Your next SMS passcode begins with [number]” message has been moved out of the Duo Prompt pop-up message and is now displayed under the passcode input.

New and updated applications

Duo Device Health Application version 2.2.0.0 released

  • Created a customized installer screen.
  • UI improvements.

Bug fixes

  • On an application’s properties page in the Duo Admin Panel, if groups were reordered, they would not display in the correct order on the application table. The groups are now displayed in the same order throughout the Duo Admin Panel based on the order set on the edit application screen.
  • In the Duo Admin Panel, when adding users to a group by selecting users, clicking the “…” button, and choosing “Add to Group,” Duo Administrators would have to select the box in order to start searching for a group. Now the search box is focused automatically on opening the modal so administrators can more easily use just the keyboard to search, select, and add the group.
  • Fixed an issue where notes were uneditable for synced users, even with the directory sync didn’t attempt to set notes.
  • Fixed an issue where Application names weren’t properly encoded when viewing which integrations are associated with a policy.
2 Likes