Did we buy the wrong thing? DUO Access Gateway and Microsoft 365

old.reddit.com / @/u/idrinkpastawater, https://old.reddit.com/user/idrinkpastawater

Like most of you on this subreddit, we are working on becoming CMMC Level 2 compliant by 2025.

We recently purchased DUO Federal for our MFA. It looks like we might of just shot ourselves in the foot. We don't have any on prem infrastructure anymore - and when I say this I mean we have NONE. No Active Directory, No DNS, DHCP, or any kind of server infrastructure. We are all strictly cloud.

Well, come to find out after readying DUO's documentation - DUO Federal doesn't support Conditional Access via Azure or Single Sign On (which makes sense since they aren't FedRAMP Compliant). The only method that is supported is DUO Access Gateway - but I read you need to have some sort of on prem server to make it work.

Is anyone using DUO Access Gateway in your environment being strictly cloud only and how so? Did you spin up a server in azure? Are you using a third-party IdP hosted in the cloud? Would Azure be considered a third party IdP?

submitted by /u/idrinkpastawater
[link] [comments]

published 29 days ago


Previous

USB drives with no CUI storage connecting to a CUI workstation.
published 29 days ago

Next

Trying to find that rude CMMC info website
published 29 days ago
See all items from the same source