Creating and Configuring a Duo System of Record

Prerequisites

  • SGNL User Account with at least Protected System Admin and Log Reader (or Global Reader) privileges to your SGNL Client.
  • Duo Account with privileges to create API applications and retrieve keys and secrets [Not from the Sources].

Configuring Duo

Generating an API Key

  1. Log in to the Duo Console.
  2. From the left menu, select Applications and then Admin API.
  3. Copy your Integration Key, Secret Key, and API Hostname and store them somewhere safely you’ll need these to enter into SGNL shortly.

Configuring SGNL

  1. Log in to the SGNL Console.
  2. From the left menu, select Systems of Record.
  3. Click “Add System of Record”.
  4. From the Catalog, select “Duo”, which will open up the New System of Record screen with some configuration options pre-populated from the Duo SoR template.
    1. Enter the Hostname of your Duo instance. This is the API hostname provided when you configured your Admin API application. For example: api-xxxxxxxx.duosecurity.com.
    2. Ensure the Duo Adapter is selected that matches the Duo System of Record Type.
    3. Select Basic as the Authentication Method and enter the Integration Key and Secret Key as the Username and Password respectively.
  5. Click Save to save your Duo SoR. You will be taken to the Duo System of Record page.
    1. All entities and relationships are created as defined in the Duo template. If applicable, you can edit an entity and modify any properties of the entity or the associated attributes.
  6. (If applicable) You can also create relationships joining entities and attributes in Duo to entities and attributes in other Systems of Record configured in SGNL.
    • For more information on relationships, please refer to our Relationships page.
  7. Note that synchronization is disabled by default when a new System of Record is created.
    • You can choose to enable synchronization on Entities individually. Hover over the entity to see the Enable Sync button, and click on it.
  8. Repeat for all Entities you want to synchronize to SGNL. Finally, Enable synchronization for the System of Record.
  9. Go to SGNL Ingestion Logs to confirm that ingestion has started. Wait a few seconds for ingestion to complete.
  10. After some time, SGNL should complete ingesting the data from your Duo instance into the SGNL graph.
    • The number of objects ingested per entity are displayed on the Duo screen.
    • You should then be able to construct policies based on your Duo data and make access evaluation calls to SGNL.