Set Authentication Frequency

Hi there.

I’ve got Duo set up on Linux using with the RADIUS application and working well. However, for some users, I would like to allow them to login in for some period of time after authenticating through Duo without having to authenticate on each login.

Is there a way to set on a per-user or per-group basis how often the users need to authenticate through Duo?

I thought I had previously seen how to configure this but I don’t see it in the admin panel and I don’t see an appropriate option in the authproxy.cof.

It could be that the option isn’t available any longer since my free trial has expired. This isn’t a big deal since I plan to sign up for a paid plan. If a paid plan is required, which levels support it?

Thanks!

Remembered Devices is a policy setting available in paid plans that lets a user minimize Duo auth requests by remembering their browser when they log in with an application that shows Duo’s interactive web-based prompt.

However, the Remembered Devices policy isn’t applicable to RADIUS integrations that don’t show the browser prompt. There is no option to configure a trusted or remembered session for these RADIUS integrations.

1 Like

Thanks for the reply, @DuoKristina. In the web-based app, it sounds like the timeout is at the user discretion, but for our case, we would like to set it based on our policy but not make it configurable by the user. In other words, some users we want to authenticate more often then other users and we don’t want the users to be able to opt out of it. In any case, we’re not currently using a web-based application authentication.

Are there any plans to augment the RADIUS application in the future to support a configurable timeout? Is there a way to request such a feature?

Best,

  • Mason

You can share your feature requests with your Duo Account Executive or Customer Success Manager if applicable, or contact our Support Team.

2 Likes