Hello everyone! Here are the release notes for our most recent updates to Duo.
Public release notes are published on the Customer Community every other Friday, the day after the D-release is completely rolled out. You can subscribe to notifications for new release notes by following the process described here. If you have any questions about these changes, please comment below.
What’s in this release?
New features, enhancements, and other improvements
New and updated applications
Bug fixes
See all bug fixes
New features, enhancements, and other improvements
Duo Passwordless now in General Availability
Verified Duo Push now in General Availability
- Available at no added cost to all Duo MFA, Access, and Beyond edition customers.
- By requiring end-users to enter a verification code to approve a Duo Push authentication request, Verified Duo Push adds security from push harassment and push fatigue attacks. It also provides improved fraud reporting from end-users by directing them toward the fraud report option in Duo Mobile when they receive unexpected Duo Push login requests.
- Improvements to the information displayed by the Duo Universal Prompt after a user logs into an application protected by Verified Duo Push. Please note that these UI improvements have not been applied to the Verified Duo Push authentication required during a Passwordless Push enrollment flow.
Duo Trusted Endpoints Manual Enrollment with Device Health now in General Availability
-
Duo Beyond edition administrators can now manually add or delete device identifiers in the Duo Admin Panel. These extend Trusted Endpoint policies to protected applications accessed by BYOD and vendor devices that are not managed by the enterprise mobile device management solution (MDM).
Duo Risk-Based Factor Selection now includes more informative configuration menus and logs
Duo Admin Panel now exports WebAuth & U2F security key list
UX improvements to Admin Directory Sync
- Updated the Admin Directory Sync warning message when a given directory group is assigned to more than one role.
Duo Single Sign-On error page now displays an Error Trace ID
- Duo Support can use Error Trace IDs to track down related log events for faster and more systematic resolution of support issues.
New and updated applications
Duo Authentication Proxy 5.7.4 released
- Improved logging for LDAP timeouts.
- The Authentication Proxy Manager and connectivity tool now warn against use of ‘clear’ transport in ad_client with certificates specified.
- Removes the misleading no reply message in packet RADIUS error message to reduce confusion while troubleshooting authentication failures.
- No longer duplicates the proxy-state RADIUS attribute when both the RADIUS client and server configuration sections specify pass_through_all=true.
- The connectivity tool no longer exits prematurely when it fails to connect to a RADIUS server that is not running.
- Fixed an issue that could result in multiple redundant connections to the Duo SSO service in certain race conditions.
Duo Mobile for Android version 4.28.2 released
Duo Mobile for iOS version 4.28.0 released
- Miscellaneous bug fixes and behind-the-scenes improvements.
Bug fixes
- Fixed Unexpected errors returned by the Duo Admin API in response to three API call scenarios:
- Fixed two bugs in Duo Passwordless: