We are currently rolling out Duo for our Windows clients (using the Duo Authentication for Windows app) and we’re running into issues when users take too long to perform the 2nd authentication with Duo. Authentication flow goes something like this:
- User logs in to the client user their AD username/password.
- The Duo window pops up requesting an authentication method (Push, Call, or Code)
- User takes too long accepting the push or entering a code generated by the Duo Security app
- Upon successful authentication, the Duo window closes and Windows goes back to the login prompt after timing out.
It seems to me this is more of a Windows setting, so I’m wondering if anyone knows of a GPO where this timeout can be increased.