Cisco Duo Integration with WatchGuard CloudDR

Applies To: WatchGuard CloudDR This topic applies to the WatchGuard Cloud Detection and Response product.

Cisco Duo is a cloud-based, security platform that provides Identity and Access Management (IAM) and Multi-Factor Authentication (MFA), to protect organizations from unauthorized access and data breaches. Cisco Duo protects user identities and verifies logins through push notifications and assesses device health before it grants access to applications. This guide describes how to integrate Cisco Duo with CloudDR.

Available Features

• Misconfiguration Rules
• User Inventory
• Identity Rules
• Devices Inventory

Prerequisites

To configure this integration, you must:

• Have a Cisco Duo account user with the owner role.
• Generate an Admin API key for the account.

To generate an Admin API key for your Cisco Duo account user:

1. Log in to Cisco Duo with the account that has the owner role.
2. Select Applications > Protect an Application.
3. Click Add New Key.
4. Search for Admin API and click Add.
5. From Settings, select these permissions:
   • Grant administrators - Read
   • Grant read information
   • Grant applications
   • Grant settings
   • Grant read log
   • Grant resource - Read
6. Click Save Changes.
7. Copy the API Hostname, Client ID, and Client secret and store in a secure location.

Required Privileges

Scope	Use
Grant resource (Read)	Read devices and provisioned application details
Grant read log	Read usage activity
Grant settings	Read settings and configurations
Grant applications	Read integrated provisioned applications and their details
Grant read information	Read general information about the Duo instance
Grant administrators (Read)	Read all administrators

Configure the Cisco Duo Integration in CloudDR

To integrate Cisco Duo with CloudDR:

1. In WatchGuard Cloud, select Configure > CloudDR.
2. Select the Integrations tab.
3. (Service Providers) From the Select Integrations View drop-down list, select Add Integrations.

   

4. In the Duo widget, click Add.
5. Click Start Integration.
6. On the Namespace page, in the Namespace text box, paste the API Hostname you copied previously.
7. Click Next.
8. On the Integration Key page, in the Integration Key text box, paste the Client ID you copied previously.
9. On the Secret Key page, in the Secret Key text box, paste the Client Secret you copied previously.
10. Click Submit.

Related Topics

About WatchGuard CloudDR Integrations