We use Duo Access Gateway for SAML integration, and it doesn’t appear that it supports an additional factor for authentication. This should really be fixed.
We are DUO Platform subscribers and are currently using SAML via the access gateway to protect multiple applications. We recently began testing Microsoft’s protected user group in AD and are running into an issue with our existing SAML integrations. ...
We are aware of the IP Restrictions in place for DAG, and have implemented them. That being said, IP restrictions are not a second factor for authentication. We also have already implemented two factor authentication on the server via Duo for windows...