Before installing the Cisco Duo Authentication Proxy into the ADC, we first need to choose an application to protect and obtain the integration and secret keys and the API hostname.
For this exercise, we are going to be configuring using LDAP. The operation is similar for RADIUS.
Our first task is to create a test user to make sure everything works. You do not need to do this if you have a working Duo installation.
You will need access to the Cisco Duo Admin Panel to proceed.
1. Log in to the Duo admin panel and navigate to the Applications page.
2. Click the Protect an Application button and select LDAP from the applications list.
3. Click the Protect button in the application listing line
4. You will see a page with information similar to the one below:
5. Scroll down the same page until you see the Settings section.
6. There is an option called Username Normalization.
7. Select the Simple option.
8. From the navigation panel, find and the option Users.
9. Click on Users to display the Users section on the main page.
10. Click the Add User button
11. Fill in the fields for Username, Full Name, and Email. We also advise you to select the Add a username alias and create an alias.
12. Install the Cisco Duo mobile application on your phone unless you have already done so. The App will be needed for confirmation.
13. Scroll down the page until you see the Phones section.
14. Click the Add Phone button and fill in the details.
15. Fill in the details and click the Add Phone button
16. You will now need to add further information as below.
17. You will now need to click Activate Duo Mobile, shown in the example below.
18. This action will take you to a new screen, as shown below. Click the Generate Duo Mobile Activation Code, and then click the Send Instructions by SMS button.
19. You will get an SMS message with an activation link. Click the link, and the user we created will be activated and added to the Cisco Duo App.