Cisco Duo

29 Launches
Solution Overview

This lab is intended to provide an introduction to Duo Security’s platform and how it supports Multi-Factor Authentication (MFA), or more specifically two-factor authentication (2FA). 2FA is a specific type MFA that strengthens access security by requiring two methods (also referred to as authentication factors) to verify your identity. These factors can include something you know - like a username and password - plus something you have - like a smartphone app - to approve authentication requests.

2FA protects against phishing, social engineering and password brute-force attacks and secures your logins from attackers exploiting weak or stolen credentials. Duo is a cloud-based 2FA provider and is a leader in the 2FA space. Duo’s mission is to provide an easy and effective way to implement 2FA in order to better protect your company’s network and assets. 

This demo environment includes a Windows server and a web server in order to demonstrate how Duo’s 2FA can be used to protect different kinds of access. It also includes an emulated Android device, which will receive the “Duo push” to allow you to complete the 2FA process. 

Goals & Objectives

After going through the lab guide, users of this lab should be familiar with the basic functions and features provided by the Duo MFA solution, including:

  • How Duo 2FA can be used to protect RDP access to sensitive endpoints
  • How Duo 2FA can be used to protect access to web apps
  • How the Duo Mobile app is used to receive the Duo Push and view access passcodes
  • How the Duo Admin Panel is used to manage the solution

Hardware & Software

  • Jumpbox w/ Emulated Mobile Device
  • Active Directory Server (to demonstrate 2FA for RDP access)
  • Web Server (to demonstrate 2FA for web application access)
  • Duo Admin Panel (hosted in the cloud)