Cisco Duo Playbook
This playbook is designed to provide you with use case education, customer requirements, and actions you'll need to take to help your customers navigate their Cisco product adoption.
How to coach for success with Cisco Duo
Help your customers get started with Cisco Duo by guiding them through initial onboarding steps, and empower them to leverage advanced features to configure SSO, enhance authentication methods, and secure critical applications.
To help your customer get started with Cisco Duo, guide them to download the Duo Mobile app and log into the Duo Admin Panel. Assist them in setting up an additional owner to prevent lockouts, and help enroll test users into Duo. Review the documentation for the applications they want to secure and guide them through the configuration steps, prioritizing at least two critical applications. Verify the setup by ensuring at least one user successfully authenticates into a protected app. Expand user enrollment using methods like Active Directory sync, self-enrollment, or manual enrollment, and configure strong verification methods such as FIDO2 authenticators. Finally, review authentication logs to confirm user activity and ensure their environment is secure. These steps will help your customer effectively deploy Cisco Duo and protect their applications.
To help your customer begin leveraging Cisco Duo, guide them to download the Duo Mobile app on their mobile device and log into the Duo Admin Panel. Assist them in establishing an additional owner, noting that only an owner can enable Single Sign-On (SSO) for Duo. Once an additional owner has been set up, help the customer create a communication plan for end users and select an appropriate enrollment method. From there, they can configure their authentication source and integrate Duo with their pilot application for Single Sign-On, setting the foundation for a smooth deployment.
Assist your customer in adding an additional owner, as only an owner can enable Single Sign-On (SSO) for Duo. Once the additional owner is set up, guide them in creating a communication plan for end users and selecting an appropriate enrollment method. From there, they can configure their authentication source and integrate Duo SSO with their pilot application to begin leveraging its capabilities.
Customers eligible the Secure Application Access with Phishing-Resistant Multi-Factor Authentication journey when they meet the following corresponding entry criteria:
Note we will be excluding: Security Suite customers
Customers enter the Secure Application Access with Phishing-Resistant Multi-Factor Authentication journey when they meet the following corresponding entry criteria:
| Eligibility Rule | Hierarchy Component | Rule Description |
|---|---|---|
| Rule 1 | License | Duo Essentials, Advantage and Premier License, EA 2.0 Duo Essentials, Advantage, and Premier License(s), EA 3.0 Duo Essentials, Advantage, and Premier License(s), User and Breach Protection Note we will be excluding: Security Suite customers |
| Eligibility Scenarios |
|---|
| If Rule 1 or Rule 2 is TRUE, then your customer is ELIGIBLE |
Customers are eligible for the Protect Cloud Applications with SSO and No SSO journey when they have purchased:
Customers are enter for the Protect Cloud Applications with SSO and No SSO journey when they have purchased:
| Eligibility Rule | Hierarchy Component | Rule Description |
|---|---|---|
| Rule 1 | License | Duo Essentials, Advantage and Premier License, EA 2.0 Duo Essentials, Advantage, and Premier License(s), EA 3.0 Duo Essentials, Advantage, and Premier License(s), User and Breach Protection, OA-USER-DUO, OA-USRBRCH-DUO, OA-EA-UB-DUO, OA-EA-UB-SSE-DUO, OA-EA-USR-DUO, OA-EA-USR-SSE-DUO |
| Eligibility Scenarios |
|---|
| If Rule 1 or Rule 2 is TRUE, then your customer is ELIGIBLE |