Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1063
Views
0
Helpful
0
Replies

HTTP Post commands for website fronted by DUO - Fail Even with Exemption

dkgreszler
Level 1
Level 1

‎11-11-2020 11:05 AM

We use http post commands in our enterprise monitoring software to determine if our services provided through web applications are available. We have begun requiring DUO as an authentication layer for some of the website applications. This caused our web checks (http post commands) to fail. Even after getting an exemption set on the ID we use for the http post requests, we still have failures. After capturing and analyzing the packet flow, the request was redirected to DUO and as part of the authentication/exemption process it was determined that javascript/iframes was being used as the handoff process even for exemptions. Since we are using http post commands, there is not a full browser environment available for this type of interaction.

If we connect interactively as the batch ID from a browser with javascript enabled, the target website is reached without the DUO authentication layer being required which validates that the DUO exemption for that ID has been properly set.

I am looking for guidance on how to address this issue when needing to access a DUO fronted website through http post (batch, unattended) requests.

Thanks

0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents