Thoughts on Duo 2FA

duo.jpg

After hearing rave review from a colleague, I finally got an opportunity to deploy Duo 2FA.

First thoughts- wow, it’s fast.  With the app, you receive the push so quickly. Clicking the green check gets you in almost instantaneously.  It’s a 2FA that won’t make users groan (well….most users).

And the thing is…for my deployment, it was very simple to deploy. Priced at $3/user/mo (min 10 users) the benefits dwarf the cost for small deployments.

Let’s say you have a service account that needs to bypass 2FA- this isn’t a problem.

But the downside, which I acknowledge is a mild gripe, is that it appears there’s no way around incurring cost for paying for the “user” since it has to be listed in the console. ( I mean, I suppose you could maybe set the default policy to bypass 2FA and not list the service account in the console, but that’s leaning away from security the environment…undermining the additional security a 2FA solution…and I am not a fan of that.)

All that aside, I’m psyched about Duo 2FA and would love to deploy it more.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s