Businesses rely on third-party applications and software-as-a-service (SaaS) products as part of their operations to increase productivity and efficiency. As SaaS products become more common, so have cyber attacks targeting these accounts and the employees who use them. These attacks could potentially result in leaks of sensitive information and disruption to operations, harming businesses and their customers.
In the 2023 Password Decisions Survey, 60% of respondents reported that they had been the target of a cyber attack. A combination of defences, such as Bitwarden Password Manager, multi-factor authentication and single sign-on, helps reduce the risk of successful attacks by hardening access to critical systems. Together, these provide multiple levels of authentication and tools to create, store and share strong passwords for all departments in a company, helping to deflect credential stuffing, phishing and ransomware attacks, and keeping your business secure.
To provide this enhanced security, Bitwarden integrates with Duo for multiple solutions: Duo MFA for two-step login, and Duo SSO for Login with SSO.
Duo for Multi-factor Authentication
To further protect credentials stored within an organisation vault, Bitwarden supports Duo MFA for two-step login, also known as two-factor authentication (2FA) or multi-factor authentication (MFA). Duo MFA can be used individually and enforced across the Bitwarden organisation with the applicable Enterprise Policy, ensuring secure two-step login for all employees.
Benefits of Bitwarden and Duo MFA
Protection against stolen passwords, phishing attempts, and social engineering.
Strengthen overall enterprise security by protecting passwords and logins within Bitwarden, secured by Duo MFA.
Deploy for individuals or the entire organisation.
Quick and easy setup.
Duo for Single Sign-On
Using Login with SSO with Bitwarden provides additional convenience and security for credentials throughout the organisation. Duo SSO with Bitwarden allows secure authentication to Bitwarden accounts and, by extension, the stored credentials within, providing full oversight and control of the tools and applications that teams are using. Bitwarden is compatible with Duo through SAML 2.0 or OpenID Connect (OIDC). To maintain zero-knowledge encryption, Bitwarden separates authentication and decryption into two discrete steps: authentication through Duo, then decryption and vault access through a Bitwarden master password. As a result, decryption keys never pass through Bitwarden or Duo servers.
Benefits of Bitwarden and Duo SSO
SSO reduces the number of passwords and credentials needed by employees, decreasing the surface area of a potential cyber attack.
SSO security is extended to credentials stored within a Bitwarden vault.
Easy integration into existing workflows without disruption.
Additional security options for user authentication.
Summary
The Bitwarden and Duo integration brings additional security to businesses and teams in two ways: as a form of multi-factor authentication (MFA) and as a Single Sign-On (SSO) provider. In addition, the MFA functionality can be used for individuals and also enforced across the organisation. Using just one or both integrations can drastically improve your business’s security posture, and deploying the solutions is simple and straightforward.
Resources
Want to learn more? Visit the Bitwarden Help Centre and documentation, or contact sales directly!