I am trying to authenticate via the WebSDK and running into a problem.
I am not getting the push notification and my app password is not being accepted.
Steps I have taken:
• I have created a WebSDK integration under “Protect an Application”
• Recorded the Integration Key, Secret Key, API Hostname.
• There is no user restriction, but there is a global policy for “Deny access to unenrolled users” and all auth methods are allowed.
This is a Django app, and based off of the demo you have published.
Within my app I have double-check the key values and they match what is listed on the duosecurity admin panel for my protected application.
I have generated an akey using your documentation located here:
You can generate a random string in Python with:
import os, hashlib
When attempting to authenticate, I am provided the Duo iframe and there is an option to push a notification of enter a passcode.
This looks as expected.
However, if I select to send a push notification, it never is sent.
Also, if I attempt to enter a passcode, I receive and error that the passcode is invalid.
When reviewing the auth logs in the duo portal, I can see the failed auth for both passcode and push. They are also listed as associated with the correct websdk application.
Also, my system is on UTC time. I double checked, and it is definitely correct, so not thinking it is time issue.
Do you have any suggestions as to what my be causing the problem?