I’m checking out if Duo is the correct solution for a company I administer.
Successfully I registered my Duo-Admin-User and user A of MacBook A with Duo and the Duo Mobile/Duo Push.
Then I enrolled a second user (B) who (mainly) uses MacBook B with DUO, too. And for ease of testing added the same phone for this user B in the admin panel.
Additionally I want to protect login to MacBook B with a hardware token. It’s a Yubikey 5 which I also succesfully registered with DUO.
It works ok, but I would like to understand, how & why!
- Different from MacBook A this MacBook B never uses Duo Push due to lack of network connection during the early login process. Therefore this user still has “Never authenticated” in his details. Why is this?
- I was expecting the user B to show up in the list in Duo Mobile, just like the Admin user and user A. But it’s not. Is that normal? Should/Can I add it manually?
- How was MacBook B “informed” that this special Yubikey is the right one?
Sorry for dumb questions, I really tried to find the information somewhere else, to no avail.
Thank you very much!