Duo SSO
Set up Duo SSO to log in to the Panther Console
Last updated
Set up Duo SSO to log in to the Panther Console
Last updated
Panther supports integrating with Duo as a SAML provider to enable logging in to the Panther Console via SSO.
For more information on features, terminology, and limitations of SSO integrations with the Panther Console, see Identity & Access Integrations.
As is outlined in Duo's documentation, before configuring SSO with Duo, you'll need to:
Log in to the Panther Console.
Click the gear icon in the upper right. In the dropdown menu, click General.
Click the Identity & Access tab.
Keep this browser window open, as you will need the Audience and ACS URL values in the next steps.
Still in the Duo Admin Panel, scroll to the bottom of the page, and click Save.
Keep this Duo Admin Panel browser window open, as you will need the Identity provider URL value in the next steps.
Navigate back to the SAML configuration you started earlier in this documentation.
Next to Enable SAML, set the toggle to ON.
In the Default Role field, choose the Panther role that your new users will be assigned by default when they first log in via SSO.
Return to the Duo Admin Panel. Copy the Identity provider URL value and paste it into the Identity Provider URL field in the Panther Console.
Click Save Changes.
To test your setup, go to your Panther sign-in page and click Login with SSO.
In the Service Provider section of the application configuration in Duo, enter the Audience and ACS URL values you surfaced in Panther in the previous section.
