Now that the basic web application functionality has been validated, it is time to begin the process of adding Cisco Duo Multi-factor Authentication (MFA) capabilities.
The first step in adding Cisco Duo Multi-factor Authentication (MFA) to an existing web application is to define a new Web SDK integration in the Cisco Duo Admin Panel.
- Navigate to admin.duosecurity.com and login using the credentials defined during the trial account signup or an account with the administrator role in a Duo paid edition.
- In the upper right of the Dashboard, select the
Add New...button and then selectApplicationfrom the dropdown list. - Enter SDK in the Protect an Application filter input field. Select the
Protectbutton to the right of the Web SDK item in the list. - Open the duo.conf file using the Visual Studio Code application (or a terminal based text
editor, such as vim).
- Copy the
Client ID,Client Secret, andAPI Hostnameto the corresponding lines in theduo.conffile. - Save the chanages to the
duo.conffile.
- Copy the
- Scroll down to the Settings section of the Web SDK application integration configuration page in the Duo Admin
Panel and change the name to something more descriptive, such as Cisco Live DevNet Test. This name will display in
the Duo MFA prompt shown to end users when they authenticate to the application.
- Scroll to the bottom of the page and select the
Savebutton.
- Scroll to the bottom of the page and select the
The next step is to add the new code to the web application to add Cisco Duo MFA.
The Client Secret for the Web SDK application integration should be treated as a password. If at any point there
is a possibility that it has been compromised, it should be reset with a new value.