DotNetNuke Two Factor Authentication – Duo Push Notifications

DotNetNuke (DNN) Two Factor Authentication provides the ability to add the second layer of authentication on the top of DotNetNuke default login page. The Duo Mobile app delivers two-factor push notifications to your users' phones for fast and secure access. After logging in the DotNetNuke application, they can simply approve the push notification they'll receive on their smartphone to securely access their application. Our DotNetNuke Two Factor Authentication stands effective against cyber attacks, is also user-friendly. Our DotNetNuke (DNN) Two Factor Authentication Module provides the 8+ authentication methods including Google Authenticator, Microsoft Authenticator, OTP over SMS, OTP over Email, Duo Push Notification and many more.

1. Download and Install the Two Factor Authentication Provider (2FA) in DotNetNuke.

• Download the package for DotNetNuke Two Factor Authentication Provider (2FA).
• Upload the installation package dnn-two-factor-authentication-provider_xxx_install by going in Settings > Extension > Install Extension.
• Now under the Installed extensions tab select Authentication Systems. Here you can see the miniOrange DNN 2FA Authentication Provider.

• You have finished with the installation of the 2FA Authentication Provider on your DNN site.

2. Configure Duo Push Notifications

• Just click on the pencil icon as mentioned in the image below to configure the DNN 2FA Authentication Provider.

• To enable 2FA you need to enable the Enable 2FA for End Users toggle button.

• To enable 2FA for admin you need to check the Enable 2FA for Admins checkbox.

• To enable 2FA for AD Authentication click on DNN AD Login under Advanced Settings tab and select AD Login.

• Under Configuration tab click on Push Notification and select Duo Push Notification as a two factor authentication method and click on configure button.

• If you do not have a Duo account, please click here to create an account.
• After signup, please login into the Duo portal.
• Go to the Applications option on the left side menu and click on the Protect an Application submenu.
• Search for Auth API and click on the Protect button.

• You have successfully created the Auth API to the protected applications.
• Now copy the key details and paste it to the Duo configuration in the miniOrange DotNetNuke two factor authentication plugin.

• Click on the Save button.

• Now, click on the Configure your Phone button.

2. Configure Duo Push Notification

• Click on the hightlighted text provided in the Step 1.

• You will be prompted to set up your account on Duo Security.
• Click on the Next button.

• Select the country code and enter your phone number.
• Then click on the Add Phone Number button.

• Choose any one of the options provided to login with Duo.
• Let us select the Duo Mobile option.

• Scan the Barcode from the Duo mobile app.
• You will see a right tick on the barcode. Hence, your account is added successfully.

• You have successfully set up Duo Authenticator and completed the first step of the process.

3. Test Duo Authenticator / Push Notification

• Click on the Send Me Push Notification button in the Step 2.

• You will receive a Duo push notification on your mobile app. Approve the transaction and complete the process.

• Duo push notification will be validated, and you have successfully set up the Duo Authenticator method.

4. Test Duo Authentication while DNN Login

• Now let us go to the DotNetNuke 2FA module's login page and test the Duo Authenticator method.
• Log into your DotNetNuke (DNN) website.

• You will receive a push notification on your Duo Authenticator mobile app.

• You will be successfully logged in to your DotNetNuke (DNN) account.

Additional Resources

• Two Factor Authentication (2FA) for ASP.NET
• Two Factor Authentication (2FA) for nopCommerce
• Two Factor Authentication (2FA) for Umbraco