Default
Duo
API integration
Ship Default features without building the integration. Full Duo API access via Proxy, normalized data through Unified APIs — extend models and mappings to fit your product.
Talk to usUse Cases
Why integrate with Duo
Common scenarios for SaaS companies building Duo integrations for their customers.
Automate user provisioning and deprovisioning across Duo
HR and identity platforms can automatically create users in Duo, assign them to groups, and disable accounts when employees leave — ensuring MFA coverage stays in sync with the employee lifecycle without manual admin intervention.
Centralize identity visibility for security posture management
Cybersecurity SaaS products can pull Duo user and role data into a unified identity view, enabling customers to detect orphaned accounts, audit group memberships, and identify users who lack MFA enrollment across their entire tool stack.
Enrich helpdesk workflows with Duo user context
ITSM and helpdesk platforms can surface Duo user profiles and group assignments directly inside support tickets, giving IT agents the context they need to resolve MFA-related issues without switching to the Duo Admin panel.
Sync organizational roles into Duo groups for policy enforcement
SaaS products managing org structures — from HRIS to governance platforms — can map their internal roles to Duo groups, ensuring that access policies like hardware token requirements or restricted network access automatically apply to the right people.
Build cross-platform identity reconciliation for compliance audits
GRC and compliance platforms can pull user and role data from Duo alongside other identity providers, enabling customers to generate audit-ready reports showing who has access to what and whether MFA is enforced consistently.
What You Can Build
Ship these features with Truto + Duo
Concrete product features your team can ship faster by leveraging Truto’s Duo integration instead of building from scratch.
Real-time Duo user directory sync
Automatically mirror your product's user base into Duo, creating and disabling user accounts as employees join or leave the organization.
Group-based role mapping engine
Map roles defined in your SaaS product to Duo groups so that MFA and access policies are automatically applied based on organizational role.
Unified identity dashboard with Duo coverage
Display Duo user enrollment status and group memberships alongside data from other identity providers in a single pane of glass for security teams.
Offboarding lockout automation
Trigger immediate Duo account disablement when an employee is terminated in your HR or identity platform, cutting off access to all Duo-protected applications.
MFA enrollment gap detector
Compare your product's active user list against Duo's enrolled users to flag employees who haven't completed MFA setup and need follow-up.
In-app Duo user profile viewer for support agents
Embed a read-only Duo user profile panel inside your helpdesk or admin UI so agents can see a user's status and group memberships without leaving your product.
Unified APIs
Unified APIs for Duo
Skip writing code for every integration. Use Truto’s category-specific Unified APIs out of the box or customize the mappings with AI.
How It Works
From zero to integrated
Go live with Duo in under an hour. No boilerplate, no maintenance burden.
Link your customer’s Duo account
Use Truto’s frontend SDK to connect your customer’s Duo account. We handle all OAuth and API key flows — you don’t need to create the OAuth app.
We handle authentication
Don’t spend time refreshing access tokens or figuring out secure storage. We handle it and inject credentials into every API request.
Call our API, we call Duo
Truto’s Proxy API is a 1-to-1 mapping of the Duo API. You call us, we call Duo, and pass the response back in the same cycle.
Unified response format
Every response follows a single format across all integrations. We translate Duo’s pagination into unified cursor-based pagination. Data is always in the result attribute.
FAQs
Common questions about Duo on Truto
Authentication, rate limits, data freshness, and everything else you need to know before you integrate.
Which Duo API does Truto connect to?
Truto connects to Duo's Admin API, which provides programmatic access to user and group management — the core entities mapped to Truto's Unified User Directory API (Users and Roles).
What authentication method does Duo's API use?
Duo's Admin API uses HMAC-SHA1 signed requests with an integration key and secret key. Truto handles this authentication on your behalf, so your application never needs to manage Duo's signing logic directly.
Are Duo-specific tools available out of the box?
Duo integration tools are built on request. The Unified User Directory API (Users and Roles) is available for mapping Duo users and groups. If you need additional capabilities like auth log ingestion or device management, contact Truto to discuss your requirements.
How does Truto handle Duo's API rate limits?
Truto manages rate limiting, pagination, and retries automatically when communicating with Duo's Admin API, so your application doesn't need to implement backoff logic or pagination cursors.
Can I map Duo groups to the Roles resource in the Unified User Directory API?
Yes. Duo groups — which are used to apply access policies — are mapped to the Roles resource in Truto's Unified User Directory API, letting you manage group assignments through a standardized interface.
What data can I read and write for Duo users through Truto?
Through the Unified User Directory API, you can read and manage core user attributes such as name, email, status, and group memberships. Duo-specific fields like device associations or bypass codes would require custom tool development built on request.
Duo
Get Duo integrated into your app
Our team understands what it takes to make a Duo integration successful. A short, crisp 30 minute call with folks who understand the problem.
Talk to us