Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
951
Views
0
Helpful
2
Replies

Letting users manage their devices

Go to solution
mauricej341
Level 1
Level 1

‎10-28-2021 10:44 AM

We are interested in using the option to let users manage their down devices. I see that this is disabled by default (at least in the applications we’re using), so I was wondering why some orgs may not want to have that option available?

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Amy2
Level 5
Level 5

‎11-08-2021 11:04 AM

Hi @mauricej341, this is a great question! I’d love to hear from some Duo admins to get their perspective on this, but I can speak generally to what we’ve heard from customers before. Some admins are hesitant to allow users to manage their own devices because they don’t have as much granular control as they’d like with the Duo Policy today. Also, there is concern that bad actors could potentially use the self-service portal in malicious ways. That would require your user’s primary credentials and second factor of authentication to become compromised, so it’s unlikely, but it could happen. We specifically call out in our documentation some preventative measures you can take to avoid telephony misuse via the self-service portal.

Still, allowing your end-users to manage their own devices is ideal in most scenarios because of the savings in both cost and time. I hope that helps!

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Amy2
Level 5
Level 5

‎11-08-2021 11:04 AM

Hi @mauricej341, this is a great question! I’d love to hear from some Duo admins to get their perspective on this, but I can speak generally to what we’ve heard from customers before. Some admins are hesitant to allow users to manage their own devices because they don’t have as much granular control as they’d like with the Duo Policy today. Also, there is concern that bad actors could potentially use the self-service portal in malicious ways. That would require your user’s primary credentials and second factor of authentication to become compromised, so it’s unlikely, but it could happen. We specifically call out in our documentation some preventative measures you can take to avoid telephony misuse via the self-service portal.

Still, allowing your end-users to manage their own devices is ideal in most scenarios because of the savings in both cost and time. I hope that helps!

0 Helpful

Go to solution
mauricej341
Level 1
Level 1
In response to Amy2

‎12-03-2021 11:28 AM

Hi Amy,

Thank you very much for the advice!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents