Secure your business with Bitwarden and Duo

Businesses rely on third-party applications and software as a service (SaaS) products as a part of operations to increase productivity and efficiency. As SaaS products become more common, so have cyber attacks targeting these accounts and the employees that utilize them. These attacks could potentially result in the leakage of sensitive information and disruption to operations, causing harm to businesses and their customers.

In the 2023 Password Decisions Survey, 60% of respondents reported that they were the target of a cyberattack. A combination of defenses, like Bitwarden Password Manager, multi-factor authentication, and single sign-on, helps reduce risk of successful attacks by hardening access to critical systems. These provide multiple levels of authentication and tools to create, store, and share strong passwords for all departments of a company and deflect credential stuffing, phishing, and ransomware attacks, keeping your business secure.

To provide this enhanced security, Bitwarden integrates with Duo for multiple solutions: Duo MFA for two-step login, and Duo SSO for Login with SSO.

To further protect credentials maintained within an organization vault, Bitwarden supports Duo MFA for two-step login, also known as two-factor authentication (2FA) or multi-factor authentication (MFA). Duo MFA can be used both individually and enacted across the Bitwarden organization with the applicable Enterprise Policy, ensuring secure two-step login for all employees.

Using Login with SSO with Bitwarden provides additional convenience and security for credentials throughout the organization. Duo SSO with Bitwarden allows for secure authentication into Bitwarden accounts and by extension, the stored credentials within, providing full oversight and control of the tools and applications that teams are using. Bitwarden is compatible with Duo through SAML 2.0 or OpenID Connect (OIDC). To maintain zero-knowledge encryption, Bitwarden separates authentication and decryption into two discrete steps: authentication through Duo, then decryption and vault access through a Bitwarden master password. As a result, decryption keys never pass through Bitwarden or Duo servers.