DUO MFA is now enabled on the WLKWTS0x servers (i.e. employees who use the terminal servers for Cleartouch or other apps). You may run into an occasion where an employee is unable to connect. To resolve this do the following:
- Add the employee to the FFL\SecurityGroups\FirewallGroups\MFALogin group in AD.
- Open up DUO and do an AD sync from the following path: Users – Directory Sync (near the top) – FFL DUO Users – Sync Directory Now
- Once the directory sync has been completed, find the user in DUO and confirm the following:
- MFALogin is listed in their Groups box
- They have a device registered under the Phones section
- If they do not have a device registered, set them as bypass until we can get them setup.
- If they do not have MFALogin listed as a group, run the Sync Directory Now process again.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article