Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
635
Views
0
Helpful
1
Replies

Duo SSO for M365 - Service Accounts

crtolbert1
Level 1
Level 1

‎09-07-2022 07:36 AM

I’m trying to protect M365 with Duo SSO. I have some email accounts in my tenant that are service accounts. I have ws-trust configured and only want users in the DuoUsers AD group I’ve created to enroll and use Duo for MFA. I have the policy checked that unenrolled users can bypass MFA. So my service account emails should still work and my users in the DuoUsers group should be prompted by a Duo push when they log into email, correct?

Thank you

Labels:
0 Helpful
1 Reply 1

DuoKristina
Cisco Employee
Cisco Employee

‎09-14-2022 06:24 AM

Accounts that authenticate using WS-Trust bypass Duo 2FA entirely, so yes, you should see your expected auth results for both service accounts and group members.

Duo, not DUO.
0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents