What is your primary use case for Duo Security?

For MFA, our main use case of Cisco Duo is to ensure secure access. We use Cisco Duo for authenticating prior to connecting to VPN, integrating with our GlobalProtect, Palo Alto, and it really helps our organization. Cisco Duo acts as a central point that integrates with our security products and tools, including our firewall.

My main use cases for Cisco Duo are providing access control, ensuring that the people who need to access resources are the appropriate people accessing them. For 2FA, I ensure bad actors are not pretending to be someone's identity with stolen credentials. It serves as a secondary enforcement for that identity check.

My main uses for Cisco Duo include having two-factor authentication on a number of products including our storefront, Epic, and email. Cisco Duo fits into my broader security environment as an added layer. In the future state, it will have much better integration with our full security stack.

We are using Cisco Duo especially because we have a lot of servers, and we need multi-factor authentication to securely access them. This is the primary use case for Cisco Duo. We have also integrated it with another security product from Cisco, Cisco ICE. So we integrate Cisco Duo and ICE together. The benefits we gain from Cisco Duo are mainly for secure server access, particularly for those who are organizing server access. There are many authentication options available, but for server authentication, Cisco Duo helps us to create a distinct separation for the server team, especially for those who have RDP connections into the server. Normal username and password setups are enhanced with Cisco Duo's multi-factor authentication, which is a vital part of securing our server infrastructure. Cisco Duo helps us in our efforts against phishing attacks, especially because it’s part of the Cisco ecosystem with Cisco ICE. Currently, Cisco is offering Cisco Secure Access, which is a cloud solution. Even if it's going to the cloud, we still need Cisco Duo for multi-factor authentication, so I believe Cisco Duo must be present even with Secure Access or ICE. Since implementing Cisco Duo, it has greatly improved our operational efficiency. Previously, identifying who accessed the servers was time-consuming, taking days or months across various locations. Cisco Duo simplifies this process by providing direct insight into login issues, allowing administrators to pinpoint problems rather than just dealing with password resets.

My main use cases for Cisco Duo are authentication to different services.

My main use case for Cisco Duo is authenticating to a VPN. Examples of how the features of Cisco Duo have benefited our organization include authenticating to our VPN, which is really all we use it for, and it just works for that. The steps my organization has taken to become more resistant to phishing attacks include working on email security and end-user training, but as far as how we use Cisco Duo, it is just multi-factor authentication.

Cisco Duo's main use case for my organization is confirming authenticated clients. We currently use a secure setup where we rely on YubiKeys to log in, and we depend heavily on Cisco Duo to help authenticate that.

My main uses for Cisco Duo are a combination of MFA for any cloud service, as well as our VPN endpoints. The main uses for these features have benefited my organization greatly, as we work with a lot of third-party contractors, so it makes it really easy to onboard them in a secure fashion.

I'm a Duo console admin. One example is that we can completely lock down our Linux command-line interface. We require Cisco Duo authentication for any privilege escalations, and we have to have Cisco Duo throughout all of our infrastructure at all times. Without Cisco Duo, that would be very tough because Cisco Duo is a one-stop-shop, especially with their console. We would have zero visibility into anything identity related, especially securing our network. With Cisco Duo in place, we don't have to worry about random phone calls and somebody replicating the dial tone from that. Even though that's still something we have to try to mitigate since threat actors are always finding new ways, especially with this new AI, to get around that. Our network is fairly locked down to the outside world since we are in research. Penetrating in the first place would be very difficult. Cisco Duo is also tied in greatly with our on-prem AD, and it allows us to authenticate through there without the headache of trying to wonder if it's an authentication attempt or not. The visibility and the ease of use led me to choose Cisco Duo as a primary identity security partner.

Cisco Duo's main use case in my organization has evolved significantly. Originally, I purchased it for multi-factor authentication for remote access. Now I am migrating it to function as an identity provider and to run authentication through Cisco Duo. Previously, it was not authentication; it was only multi-factor authentication. Now I am creating and establishing Cisco Duo as my organization's identity provider.

My main use for Cisco Duo is for authentication. If Cisco Duo were removed, we would have to find another authentication method. As my organization adopts and deploys AI agents, we are not doing that yet with agentic IAM to ensure these non-human identities are secure, and the role Cisco Duo plays in that strategy is not defined. Cisco Duo fits into my broader security environment as an added security layer for our clients. Looking back, Cisco Duo has helped me evolve my IAM strategy from simple authentication to a more comprehensive identity security platform by providing two-factor authentication for our clients' security needs. When evaluating my identity strategy, I was looking for a standalone authentication system to be able to be implemented on a per-client basis.

My main use case for Cisco Duo is multifactor authentication.

My main use case for Cisco Duo is just as a second-factor authentication.

The main use case for Cisco Duo is extra authentication into the network.

My main use case for Cisco Duo is authentication to the applications in our infrastructure.

We primarily use Cisco Duo as another layer of security to protect our logins for our desktop, our VPN, and our Office 365 instance.

My main use for Cisco Duo is authentication and MFA.

My main use cases for Cisco Duo are for push notifications for new users or if their phone is unable to receive Duo push notifications. I sync it through Active Directory and usually assist users trying to get back into the VPN. I use Cisco Duo's push notification method, which makes it easier and faster because if a person is having issues with their phones or is unable to log in with the VPN or with a Duo push notification, it is a quick sync and then I am able to assist or restart their phone, after which the push notification goes through to their actual phone number.

Cisco Duo is used as a security point between us and a partner.

My main use case for Cisco Duo is just authentication.

My main use for Cisco Duo is authentication throughout all of our products.

My main use case for Cisco Duo is for security.

My main use cases for Cisco Duo are VPN and SaaS.

Our main use case for Cisco Duo is the VPN, but we are actually moving into using it for the clients and all the endpoints, so they can log in with their device. Primarily, we are using it for the VPN right now. Cisco Duo offers broader capabilities beyond just MFA. While we utilize it primarily for multi-factor authentication, there are many more features available. Being in security allows me to see how it helps monitor login activity and identify issues more effectively.

Our main use cases for Cisco Duo are single sign-on and MFA. The main feature for single sign-on would be the ease of remote access VPN, which is real simple and straightforward. Single sign-on benefits our company by providing ease of use to allow users to get into the system.

Our current main use cases for Cisco Duo at our company are for VPN and Microsoft RDP. Cisco Duo plays a significant part in our VPN access because it implements with ICE and gives us an extra layer of security. To access our network, we use ICE incorporated with Cisco Duo and an NPS server, and that connection is how we access our network. The extra step provides an additional layer of security along with Active Directory. We had ICE, and Cisco Duo implemented with that very well, so that played a part in what we chose. We run pretty much full Cisco security products. Our company is small, so when we first started, we purchased more licenses than we probably needed. Cisco Duo scaled well based on our setup and the number of licenses we had. I think there is a broader scope for Cisco Duo, but we haven't actually explored it. We just started implementing the RDP, the Microsoft RDP, where you basically have MFA for your server. I think there are many different things that they have to offer, but I haven't gotten to digging deeper into it.

The primary use cases for Cisco Duo include two-factor authentication from the internet and SSL VPN integration with Cisco Duo.

My main use case for Cisco Duo is identity and access management or verification, authentications, resetting passwords, self-service password reset, and managing and improving the security layer of the environment. I use Cisco Duo for access management or verification, for example, when resetting the password for a client and we need to verify them, we could send them a reactivation text or we can send them a Duo Push. That's how we follow the process. Other scenarios with Cisco Duo include Duo reactivation where people change their device and receive a new one. Then we have to get it onboarded and we send the reactivation text. They can activate with a single click.

I have primarily used Cisco Duo for Identity and Access Management, especially when clients have extensive identity footprints scattered across different business units or locations, with each location maintaining its own Identity and Access Management system. Centralizing all of that into one single pane of glass as a centralized IAM solution has been the primary motivation. During the COVID period in 2020 and 2021, remote access VPN usage increased significantly because everyone was working from home. The ability of remote access VPNs to integrate with identity was a major challenge we were struggling with at that time. Moving to a single centralized pane of glass to create entitlements, role-based access controls, and then hooking those into the VPN or VPN access solution was the primary motivator for most of my clients. For a couple of clients, I ran assessments to identify gaps, improvements, and the policies that needed to be configured and tightened. I worked in the past with Cisco XDR, but not lately. We are primarily relying on Microsoft Defender for our EDR, and for a couple of other subsidiaries, we have Palo Alto XDR, not Cisco. I understand how that solution works, but we did not deploy it extensively because market adoption is lean. Cisco Secure Access is definitely something we use as SSC, Secure Service Edge, for internet bound connectivity, integrated with Cisco Umbrella.

Cisco Duo's main use case is with Federal, specifically a version for the government, positioned side-by-side with Okta. Originally, it was implemented with the Department of Defense, which ran the traditional Oracle IAM. Someone convinced them that the Oracle IAM was obsolete, so they decided to reverse engineer the entire system. The migration involved reverse engineering the Oracle IAM into Cisco Duo and Okta, transitioning from on-premises to the cloud while maintaining integration with Oracle Cloud due to their heavy investment in Oracle Cloud for EBS, HCM, and enterprise ERP systems.

I usually work with clients in the financial sector. Many of those clients need to meet certain security requirements that are mandated by their auditor or recommended by their auditor, which is dual multifactor authentication. That is usually the reason why they first look at Cisco Duo, and then I pitch Cisco Duo to those customers for authentication into most of their financial applications as well as VPN access. It is very commonly used for VPN access.

Cisco Duo is a cloud-based multi-factor authentication and zero-trust security platform used primarily to verify that users logging in are who they claim to be and that their devices are trusted before access is granted.

My current use cases for Cisco Duo involve a pool of clients where most of our clients use Cisco Duo for MFA to access their online environments, whether it be a VPN connection back to their office or to Azure, where they usually have Cisco Duo protection on it. In our own environment, we also use Cisco Duo to access our company resources through a portal that is protected by Cisco Duo. I am using the MFA component of Cisco Duo, which I think is the main component, along with all the granular functionalities such as bypass codes. We sync to Active Directory, and we utilize geofencing when our clients are traveling, allowing us to lift the geofencing off a certain account to grant them access. We do not really use the reporting features very much, only when we are troubleshooting to see why someone is unable to access their resources.

My main use case for Cisco Duo is implementing two-factor authentication on users. I use Cisco Duo for two-factor authentication by enforcing it on users. Additionally, I am enabling posture assessment and health check on the device before allowing access to my organization, which adds extra security and ensures that I have implemented zero trust and separation of duties.

I use Cisco Duo for multi-factor authentication, remote access, and remote access authentication. I use Cisco Duo primarily for the multi-factor authenticator for remote access.

I am an IT system support person, and my use cases with Cisco Duo started out with helping clients at my firm and the firms my contracting agencies had by teaching them how to set up Cisco Duo and understand how to use it. Eventually, some of the systems I have access to on my own, usually the corporate systems and employee portals, were Cisco Duo-protected. It has been a split between using Cisco Duo and Microsoft Authenticator, depending on how the MFA has been set up. I started out as IT support, helping people install Cisco Duo on their Android and Apple devices, and I believe they actually had a computer client. Eventually, I had to use it in my own work to authenticate and gain access to the systems I support. Moreover, I have seen a lot of it used to access employee portals, either by end-user employees or my own employee portals. My last access to Cisco Duo involved helping people either activate their Cisco Duo accounts on their individual Apple or Android devices, or if they were locked out, unlock their accounts or move them over to a new device.

The use case is good.

The main use case for Cisco Duo is authentication.

My main use case when using Cisco Duo is MFA into everything: email, making teachers MFA, and mostly email. We are rolling it out to other on-site resources that we have as well.

We use Cisco Duo for MFA on all of our devices. We're exploring single sign-on right now, but haven't implemented that yet.

Cisco Duo is for multi-factor authentication for all of our users and securing our assets off-campus.

My main use case for Cisco Duo is MFA.

The main use cases for Cisco Duo are for multi-factor authentication and being able to bring your own devices securely. We don't use Cisco Duo in our organization. We sell the product to our customers.

I use Cisco Duo ( /products/cisco-duo-reviews ) for Multi-Factor Authentication (MFA) ( /categories/multi-factor-authentication-mfa ) and Single Sign-On (SSO) ( /categories/single-sign-on-sso ) purposes.

At this point, the primary use case of Cisco Duo is to secure access to systems, applications, and data through multi-factor authentication (MFA), and we use Cisco Duo, which we also provide to other clients. We implemented it and use it ourselves. The IT and finance departments should be involved in the process.

We use Cisco Duo for Cisco Webex smart remote client.

My primary use case for Cisco Duo revolves around multifactor authentication, which serves as a secondary layer of security for all users within our organization.

On my end, Cisco Duo suits my account needs well. The application remains in place. We generally apply Cisco Duo across various use cases. Many customers, including banks and private organizations, use it for enhanced security, particularly in financial and general security tasks.

My background is in electrical engineering. I have roughly almost thirty years in the industry, mostly in telecom, but the last ten years or so in enterprise. I'm currently in Anchorage, Alaska working for an organization that's Alaska-native company, which is more or less a conglomerate of different business lines. They work on everything from government contracts with NASA to construction to oil field operations, it's a lot of different businesses. Our Duo Security implementation was done about a little over three and a half to four years ago. It was about six months before I joined the company. It was done in response to a breach in the company that involved compromised credentials. I have personally been using Duo for as long as I've been in this company, so about three years.

I work in an institution with about 6,000 people. I'm a telecommunications engineer. I use Duo Security as my access point when working remotely. Because I'm a telecommunications engineer, I have to have access to my systems remotely, and our VPN client requires that we go through second-level verification, for which we use Duo Security. Ours is on-prem. We have on-prem Duo Security. We do not use cloud at this time.

We use it for user logins for Windows workstations and Office 365. We have certain requirements for doing two-factor authentication.

We use Duo Security for multi-factor authentication for our VPN.

We use Duo Security for multi-factor authentication.

We actually partner with Duo Security. We use the API to send a step-up on your phone for granting access to normal doors. You can tap your physical fob card or any other device at the door, and then receive a push notification. Depending on the success or failure of the authentication, we can either grant or reject access at the door. So it provides two-factor authentication. We use Duo for that purpose, as well as for an API and our internal VPN. However, with our product, we use Duo Security end-to-end. Duo Security has a blind spot when it comes to physical security. It doesn't cover scenarios where someone gains physical access to our network room, which involves different technologies outside of its scope. From my perspective, it can't be considered truly end-to-end in that regard. Nonetheless, Duo Security offers significant value for network security and VPN access. If we combine our product with Duo Security, then we can achieve comprehensive end-to-end security.

We have been using Duo Security for authentication in our in-house sales operations technologies. Therefore, as a Cisco partner, we regularly recommend Cisco Duo Security to our customers to help secure their VPN environments or connectivity to business-critical systems.

We use Duo Security for multi-factor authentication.

We use Duo Security for authentication for all of our SaaS applications. We also use it for RADIUS authentication.

We use it for multifactor authentication for getting in with cell phones and PCs.

We try to use the solution for pretty much everything that we can use with it. The tool helps us to get into our dashboard APIs, and log into Citrix, VPN, and servers.

We use Duo Security to level up security and access to internal systems.

Our primary use case is multifactor authentication for our VPN users. We didn't have multifactor authentication before. After we integrated Duo Security with our systems, everyone has been using it, and it has given us peace of mind when dealing with VPNs.

Our primary use case for Duo Security is all user access to email.

We were really looking for two-factor authentication to secure our applications. We are basically looking for it to reduce risk. I am in the retail space at a company with more than 2,500 employees. It is SaaS. For VPN, we have our on-prem RADIUS servers, and there is an agent on our servers for RDP.

Primarily, it was used as remote access for VPNs. It expanded our security posture, due to the increase in people working from home.

We use it for two-factor authentication for end-user and administrator login. We wanted to secure our endpoints.

We have implemented it in our organization, and we also implement it for our clients. Duo Security is used to push multi-factor authentication while signing onto computers. We have integrated it with on-premises Active Directory, Azure Active Directory, and Office 365. We have also integrated Duo Security with Mimecast and Mac devices. We have a couple of other use cases, but predominantly, it is for multi-factor authentication. It verifies the identity of a user through a token or a mobile phone app.

We wanted multi-factor authentication across a variety of platforms.

We use it for MFA to secure our Outlook webmail and some other applications as well. We use Duo for pretty much anything that uses MFA. We were looking for increased security. We wanted to make sure that the person who is trying to log in to our services is actually who they claim to be. We wanted to lock down our applications more and provide extra security. We have some on-prem servers for the gateways and it's in the cloud as well.

Our web developers use Duo Security as a WordPress plugin to provide security for our websites.

Duo Security is multi-factor authentication, specifically a two-factor authentication. It authenticates users so that you can know they're legitimate in the network. It can be used for mobile banking. For example, when you're doing mobile or internet banking with your phone, when it uses OTP, it is using Duo Security.

When our users are connecting to our Cisco VPN, Duo effectively ensures that they are who they say they are by taking a second factor into account, such as the cell phone that was used to create their profile. To do this, it sends them a second mode of authentication, such as a PIN or push confirmation. It also geo-locks who is allowed to actually log into our systems. We have it locked to the continental United States and Puerto Rico, and one outsourcing firm that we work with. Once you have it set up, all you really have to do is add people to a group in the active directory and send them the instructions on how to do it. If you have a lower technical user base, you may have to walk them through it. But once it's set up, it really is automatic. Not a single person from our IT staff really needed anything other than the instructions. Of the 15 people in our test group, nobody actually needed instructions on how to use it either — beyond what I just wrote up and sent them. As we get to the older population in our company, the less technical population, we're probably going to have to walk them through it or hold their hands a little bit. Within our organization, there are currently 15 employees using this solution. Eventually, we will have all 221 office staff users with it set up. Still, we'll probably top out at about 80 users a day. We will increase the overall usage as our users increase. So, if we hire another 10 people, then we'll buy another license.

Duo Security provides multi-factor authentication for anything that requires multi-factor authentication. It could be our internal corporate services, such as a single sign-on portal, or applications, such as Google Cloud.

We are using it for perimeter protection.

We use Duo Security to access databases, which are in the cloud. It's two-factor authentication mostly.

In my job, we are using the 365 cloud service and there is a VPN solution. We are providing solutions to other enterprise-level customers, like banks. We do not require much cloud-based security because many clients need to have solutions on-premises. We already use RSA (Rivest, Shamir, and Adelman data security). We wanted to try to add some other cloud security options for the VPN and so we tried this product.

I am VP of product in our company and we are a customer of Duo Security.

This solution provides MFA (Multifactor authentication) to protect access to the ERP system for a diverse population of employees at a public higher-education institution.