Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1072
Views
0
Helpful
1
Replies

What data is sent when requesting authentication from the proxy server to the cloud?

kings_Sky
Level 1
Level 1

‎05-27-2019 05:08 AM

my company consider Introduction of Duo
although all packet are encrypted, but many people worried to drain the internal data.
so i hope to know What data is sent when requesting authentication from the proxy server to the cloud in the encrypted packet?

Labels:
0 Helpful
1 Reply 1

Amy2
Level 5
Level 5

‎05-29-2019 08:25 AM

Hi there,

You can see the authentication POST requests to Duo during authentication by enabling debug logging on your Duo Authentication Proxy server.

This typically includes:

  • username
  • Duo factor selected
  • client IP address if available

The request signature is generated using your Duo application’s secret key as the HMAC key.

No user password or shared secret information, or the unhashed SKEY is sent to Duo’s service.

0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents