惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Hugging Face - Blog
Hugging Face - Blog
The Register - Security
The Register - Security
S
Secure Thoughts
有赞技术团队
有赞技术团队
Hacker News - Newest:
Hacker News - Newest: "LLM"
月光博客
月光博客
Engineering at Meta
Engineering at Meta
www.infosecurity-magazine.com
www.infosecurity-magazine.com
WordPress大学
WordPress大学
N
News | PayPal Newsroom
F
Fortinet All Blogs
Forbes - Security
Forbes - Security
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Y
Y Combinator Blog
L
LINUX DO - 最新话题
Google Online Security Blog
Google Online Security Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
阮一峰的网络日志
阮一峰的网络日志
Application and Cybersecurity Blog
Application and Cybersecurity Blog
V2EX - 技术
V2EX - 技术
H
Heimdal Security Blog
G
Google Developers Blog
Vercel News
Vercel News
Martin Fowler
Martin Fowler
TaoSecurity Blog
TaoSecurity Blog
腾讯CDC
Cyberwarzone
Cyberwarzone
罗磊的独立博客
S
Securelist
T
Tor Project blog
Recorded Future
Recorded Future
小众软件
小众软件
Attack and Defense Labs
Attack and Defense Labs
L
LINUX DO - 热门话题
The Cloudflare Blog
爱范儿
爱范儿
S
Security @ Cisco Blogs
雷峰网
雷峰网
Schneier on Security
Schneier on Security
T
The Blog of Author Tim Ferriss
Google DeepMind News
Google DeepMind News
S
Schneier on Security
大猫的无限游戏
大猫的无限游戏
Recent Announcements
Recent Announcements
Blog — PlanetScale
Blog — PlanetScale
D
Docker
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
酷 壳 – CoolShell
酷 壳 – CoolShell
Latest news
Latest news
M
MIT News - Artificial intelligence

The Duo Blog

Identity orchestration & cloud-native IAM: Time to rethink | Cisco Duo Active Directory security: how to stop modern threats | Cisco Duo Duo + PlainID: Dynamic Authorization Meets Enterprise Identity | Cisco Duo Continuous identity security explained | Cisco Duo Salesforce The modern MFA toolkit: push, biometrics, and security keys | Cisco Duo Cisco Duo Identity Summit Preview | Cisco Duo Duo Brings Identity and Authorization Across AI Agent Gateways | Cisco Duo Passwordless for Microsoft 365 starts with federation Custom Admin Roles: Granular control for every Duo admin Token theft, vendor abuse, and the new identity threat surface How Duo Directory automates user lifecycle management Cisco Systems Named a Customers’ Choice in Gartner Peer Insights™ 2026 Voice of the Customer for Access Management Identity provider resilience: backup and split IdP approaches | Cisco Duo Agentic AI Security: Three Threats Your Team Should Know | Cisco Duo Secure client access at scale with Duo and Meraki | Cisco Duo IdP Concentration Risk: Why Single-IdP Dependency Puts You at Risk | Cisco Duo Endpoint Management as an Attack Vector: Lessons from Stryker | Cisco Duo Passwordless authentication without cookies: Duo Push updates Introducing Duo Agentic Identity Solving the double prompt: Better UX with AMR in Duo SSO Simplify compliance with MFA, device trust, and policies Cisco Systems Named a Customers’ Choice in Gartner® Peer Insights™ 2026 Voice of the Customer for User Authentication Why identity-led security matters for MSPs right now The Hitchhiker’s Guide to Shibboleth Launching Active Directory Defense: Strengthen On-Prem AD Security | Duo Security Duo delivers: 99.99% uptime SLA for every customer Cisco Secures 125K user identities with Duo while advancing passwordless journey NIST AAL2/3 compliance with Duo Mobile Proximity Verification From protocol to practice: Secure the AI agent ecosystem with Duo How to secure the holidays & prep your 2026 IAM strategy Simplify MSP technician authentication with Duo Delegated Access Standing out in a crowded MSP market Securing for third-party risk with Duo for identity management Thwarting adversary-in-the-middle attacks with Proximity Verification OAuth 2.0's next chapter: Enabling the AI security revolution The dawn of a simpler, helpful policy experience
Industry specific IAM for MSPs
Janet Ho · 2026-02-03 · via The Duo Blog

Industry News

Identity security looks different by industry. Here’s how MSPs can keep up.

Headshot of Janet Ho, Duo Product Team

5 minute read

Identity attacks are at the heart of most security breaches, year after year. Despite their role as a primary entry point, confidence in stopping those attacks remains low. Only 33% of leaders trust their identity provider to prevent identity-based threats, even as budgets rise and urgency spikes. With 82% increasing identity security spend and 85% shifting to security-first identity strategies to counter AI-driven attacks, the gap is no longer awareness, it is execution. Identity itself is evolving. Modern identity is not just humans, it also includes machine identities such as service accounts, APIs, cloud workloads etc., increasing complexity.

So what does this mean in practice? As identity expands beyond users, are your customers ready? And as a managed service provider (MSP), are you ready to support them?

Cisco Duo makes it a win-win by delivering identity security that’s simple for users and manageable for MSPs, so it’s easier to adopt, easier to support, and easier to scale. Don’t compromise strong security for user experience. Instead, skip the complicated logins and constant prompts, and make identity security easy. This means fewer support tickets, less operational overhead, and a service that’s actually scalable for you as a service provider. As one customer put it:

I really wanted to lay down a good MFA groundwork and strong identity [posture]. ... From an MFA standpoint, Duo was the clear leader. They had the best UI/UX and [because] SSO was included, it just always made sense to start there. … Duo is a really nice turnkey way to establish both user and device context control and posture at [the same time]

Technology Services, CISO

Every customer is different

Depending on the industry, your customers may face different challenges and regulations. Let's look into this.

Finance – With some of the highest breach costs in any industry and highly sensitive data at stake, protecting customer data is critical. Phishing-resistant MFA helps protect sensitive customer data while detailed logs and reports make it easier to support compliance reports aligned to standards NIST, FFIEC, NYDFS, PCI‑DSS, and FTC Safeguards.

Duo named a Buyer’s Choice Award winner in the TrustRadius Authentication category for 2025 based on peer reviews written by practitioners, consultants, decision-makers and others who have experience using Duo.

Healthcare – In healthcare, every access decision affects real people, patients, families and staff. The goal is simple: deliver the best care possible, safely. At the same time, access has to meet HIPAA requirements without getting in the way of care delivery. Duo helps MSPs strike that balance by securing ePHI and clinical systems with strong authentication and device trust while SSO and paswordless options ensure clinical workflow isn’t slowed down.

KLAS Research, a leading research firm in the healthcare industry, announced that Duo has been ranked #1 in the category of Access Management two years in a row! Based on extensive feedback and evaluations from healthcare professionals across the nation, Duo's Multi-Factor Authentication (MFA) product was measured against the competition in key criteria including culture, loyalty, product, relationships, operations, and value. By providing secure access for every user, every device, and every application, Duo was declared the clear choice.

Retail – Retail moves fast and secure access needs to keep up, especially in environments that handle sensitive credit card data. Duo helps MSPs secure POS, cloud, and legacy retail systems with phishing-resistant access and device trust. Centralized visibility and access logs support PCI DSS 4.0 requirements, while passwordless login and self-service enrollment make it easier to onboard seasonal staff and reduce support tickets.

Cisco Systems is a 2025 Customers’ Choice for the ‘User Authentication’ market on Gartner Peer InsightsTM based on reviews submitted for Cisco Duo.

Education – With security staff and budgets stretched thin, schools have become popular targets for attacks. From shared Chromebooks to cloud-based learning platforms, access needs to be secure without adding friction for students and educators. At the same time, schools are responsible for protecting student data under regulations like FERPA, controlling who can access records, enforcing permissions, and maintaining clear audit trails. Duo helps MSPs meet those requirements by enforcing strong authentication, SSO, and device trust across K–12 and higher education.

Duo is a key component of that strategy as it confirms any user is who they say they are. The ease of use for end users combined with the simple technical integration in the background makes it a big win for us. It’s a credit to Duo that our users just got it. That’s not a simple requirement when it comes to security tools

Read the full case study

Legal – Protecting client confidentiality is non-negotiable. Duo helps MSPs safeguard attorney-client confidentiality by enforcing trusted access that verifies user identity and device health before allowing access to email, applications, and client data. By blocking unauthorized users and unhealthy devices, Duo supports compliance with the ABA Model Rules of Professional Conduct, including Rule 1.6(a) and 1.6(c), while providing secure MFA, SSO, and comprehensive protection across cloud, VPN, remote, and on‑premises systems to prevent data disclosure without disrupting legal workflows.

“Duo provides insights into user device compliance such as biometric authentication requirements, simplifying George Sink’s compliance management. Duo’s flexible approach allows George Sink to customize the user experience and MFA interaction based on specific contexts and types of users

Read the full case study

SaaS/technology providers – Constant changes is the norm for SaaS. Teams change, tools change, and new environments and third parties are introduced all the time, so access controls need to adapt just as quickly. Duo helps MSPs enforce trusted, phishing-resistant access by verifying user identity and device security posture before granting access to cloud applications, VPNs, and developer environments. Continuous monitoring, risk-based policies, and location-aware controls help detect and block anomalous or risky access, while phishing-resistant passwordless authentication, SSO, and centralized reporting reduce credential exposure without adding operational complexity for teams.

Ready to take your managed identity services to the next level? Discover even more in our eBook: The industry-focused IAM Playbook for MSPs.