Cisco Duo is a popular MFA app, but user onboarding and account resets can create friction for legitimate users and security holes for bad actors. Cover these gaps with Deepfake Defense™ and self-service.
Try it now
How to use it
Before allowing a new user to enroll themselves in Duo, you need to know exactly who they are. Current methods of new user verification don't provide enough assurance: pre-authenticated links sent to personal emails, for example, are easy for bad actors to intercept or exploit. And no pre-authenticated URL or SMS-based one-time passcode can really tell you whether a person is really who they claim to be, and not an imposter.
Nametag prevents bad actors from infiltrating your organization by verifying the identity of new users before they can enroll in Duo MFA. Our plug-and-play Duo integration ensures that only verified users can set up Duo, protecting your identity directories against imposters like North Korean fake IT workers.
When someone loses or changes their phone, they can’t get into their Duo app. Currently, to recover access, they have to use alternative MFA methods that are frustrating and insecure, or create a time-consuming helpdesk ticket. Of course, the helpdesk agent will need to verify the person’s identity; but existing methods all have substantial security or experience issues.
Self-service Duo account recovery through Nametag is a user-friendly solution that works across all of your identity providers and is uniquely secure against injection attacks and deepfakes. Organizations using Duo can simply surround their tenant with Nametag’s end-to-end solution. Deepfake Defense™ identity verification stops AI-powered imposters, while self-service account recovery options eliminate the need for helpdesk intervention.