We are about to engage DUO for 2FA and a question came to mind.
Like any org we will assign DUO to protect out O365 environment. We have desktops as well as mobile devices that sync email from Exchange online in O365. I understand that when an employee logs into O365 DUO will challenge them for acknowledgement and allow access.
How does this impact say a mobile phone where it is constatntly polling the Exchange online server for email updates?
- Will DUO only ask the user to “authenticate themsleves” the once say when the account is added to the device and no longer request the user to authenticate?
- Will DUO ask the user to “authenticate themsleves” each time the mobile device exchanges email (sent or recveived)?
- Will DUO treat the mobile device differently and ask the users to “authenticate themsleves” at certain times/events?
4 or just how will DUO handle these devices?
Why the question. If DUO will challenge the user to “authenticate themsleves” every time a mobile device interacts (either recieves an incomming email or sends one) with a mobile device it would be impractical