Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
590
Views
0
Helpful
1
Replies

Packaging/Deploying DUO install with encrypted IKEY AND SKEY information

tkutil
Level 1
Level 1

‎04-05-2023 01:55 PM

We have PDQ Deploy and I was thinking of using it to install DUO MFA, but I want to encrypt the keys in the process. I have been trying to make with work via powershell but have not been successful. Is the other option to install without the keys and use a GPO to complete the configuration?

0 Helpful
1 Reply 1

DuoKristina
Cisco Employee
Cisco Employee

‎04-07-2023 12:55 PM

The product needs the keys unencrypted in the reg to function.

You can do as you suggested (deploy w/o keys and set via GPO). If you do this, make sure to protect the secret key info by limiting view of the policy from unprivileged users, restricting registry access to the secret key location, etc.

Duo, not DUO.
0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents