Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1266
Views
0
Helpful
0
Replies

Multi domain (a Domain Forest)

Joe23
Level 1
Level 1

‎03-11-2020 08:57 AM

Firewall (PA-3050) setting:
• 8 LDAP connections to 8 Domains and Subdomains
• 8 Authentication profiles
• One Authentication sequence with all 8 Authentication profiles in them
• Two Portals, one for the current way and one for the way we want to do it.
• Two Gateways, one for the current way and one for the way we want to do it.
• The gateways have 8 Client authentication in each

We are currently using Global Protect with an “Authentication Profile” for each domain (8 Domains).
We would like to use Duo for the VPN Connections, for user’s that are connecting to their domain. However, one Groups of Users that move from Domain to Domain Using a secure device we assigned to them, we do not want them to use Duo.
Do I need to setup SSO and/or DAC for each domain? If so, do I need to setup SAML for each domain? Has anyone setup a similar configuration?

Labels:
0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents