Hello everyone! Here are the release notes for the most recent updates we’ve made to Duo.

You can subscribe to notifications for new release notes by following the process described here. If you have any questions about these changes, please comment below.

What’s in this release?

New and updated applications

• Duo Authentication Proxy Version 5.1.0
• Duo Authentication for Windows Logon and RDP Version 4.1.3
• Duo Authentication for macOS Version 1.1.0
• Duo Network Gateway Version 1.5.9
• Update Available for PingFederate as Part of Universal Prompt Project
• Duo Mobile for iOS Version 3.42.0
• Duo Mobile for Android Version 3.42.0
• Duo Device Health Application Versions 2.9.0.0 and 2.9.0

New features, enhancements, and other improvements

• User Experience Improvements for Duo Single Sign-On, Duo Central
• New Operating Systems Policy Option

Bug fixes

See all bug fixes

New and updated applications

Duo Authentication Proxy version 5.1.0 released

• Adds the authproxyctl executable to Windows installations. This can be used to start or stop the Authentication Proxy from the command line, or show the version of the running proxy. When used to start the proxy, the output of the connectivity tool is shown in the command prompt window.
• The Windows installer now starts the Duo Authentication Proxy after a version upgrade if the service was running when the upgrade started.
• The Authentication Proxy’s bundled OpenSSL has been updated to version 1.0.2w to address CVE-2020-1968.
• The connectivity tool now checks for newer versions of the Authentication Proxy.
• See full release notes here.

Duo Authentication for Windows Logon and RDP version 4.1.3 released

• Fixes an issue with Duo Windows Logon installer that may cause a MSI self-repair and subsequent “Installation stopped” error from Duo Windows Logon Installer. Customers upgrading from 4.1.2 may still experience unexpected MSI self repairs during installation. Refer to this Duo Knowledge Base article for additional remediation steps.

Duo Authentication for macOS version 1.1.0 released

• Added support for macOS 11 Big Sur. If you plan to upgrade your Duo-protected devices to macOS 11, you will need to update Duo Authentication for macOS to version 1.1.0 (or later). Refer to this Duo Knowledge Base article for more information.
• Updated to Swift 5 as required for third-party authorization plugins and login mechanisms. Installing Duo for macOS without first verifying that any other installed authorization plugins support Swift 5 may prevent user logins. Refer to these Duo Knowledge Base articles for more information:
  • How do I resolve being stuck in a login loop after installing Duo for macOS v1.1.0?
  • How can you see what authorization plugins and login mechanisms are installed for macOS?
• Be aware that MacLogon version 1.1.0 was not tested on the following macOS versions and may not work on these versions in the future:
  • 10.12 (Sierra)
  • 10.11 (El Capitan)
  • 10.10 (Yosemite)
• Consider updating to a newer version of macOS.

Duo Network Gateway version 1.5.9 released

• Obscures SAML response signatures in logs so that they cannot be replayed.
• Improved logging.
• Enables future support for the Duo Universal Prompt.
• Duo Network Gateway is part of the Duo Beyond plan.

PingFederate ready for back-end update in support of the Universal Prompt Project

• PingFederate will now display a status of “App Update Ready” in the Universal Prompt section of the application details page, indicating that a back-end update is available. The update will prepare PingFederate to support the new Universal Prompt when it is released.

Duo Mobile for iOS version 3.42.0 released

• Various behind-the-scenes improvements and minor bug fixes to enhance your authentication experience.

Duo Mobile for Android version 3.42.0 released

• Various behind-the-scenes improvements and minor bug fixes to enhance your authentication experience.

Duo Device Health application version 2.9.0.0 for macOS and version 2.9.0 for Windows 10 released

• For macOS:
  • Minor improvements and enhancements.
  • Reduced size of app.
• For Windows 10:
  • Minor improvements and enhancements.
  • Fixed an issue with delayed health reporting.

New features, enhancements, and other improvements

User experience enhancements for Duo Single Sign-On and Duo Central

• Improved the Active Directory login experience for mobile device users.
• Improved the mobile experience when using Duo Central.

New option for operating systems policy configuration

• When using an operating system policy, you can now select “Below Android version 10.0 (Q)” when blocking static versions of the OS.
• Operating systems policy is available in Duo Access and Beyond editions.

Bug fixes

• Fixed a bug in the Duo Admin Panel that prevented policies from being edited when they were assigned to a large number of applications.
• Fixed an issue where sending an administrator activation link via the /admin/v1/admins/[administrator_id]/activation_link/email Admin API endpoint did not generate an Administrator Actions log event via the API.
• Fixed an issue where clicking on the Duo Central application name in an Admin Panel Authentication Log entry would cause an error.