Cyber Tool Stack
All tools

Cisco Duo

By Cisco

The MFA product that made push-to-approve mainstream, now a Cisco product line sold in Essentials, Advantage, and Premier tiers. Pairs phishing-resistant and passwordless factors with device health checks, and remains one of the fastest MFA rollouts for protecting VPNs and legacy apps.

Verified Source: 1

Product type
Software
Deployment
SaaS
Organization size
SMBMid-marketEnterprise
Pricing tier
$

Capability checklist

MFA

How Cisco Duo measures up against the full MFA & Passwordless Authentication taxonomy.

Phishing-resistant factors — supported
Supports FIDO2 security keys and passkeys that can't be relayed or phished.
Push & one-time-passcode factors — supported
Offers mobile push approval and time-based one-time codes as second factors.
Adaptive step-up authentication — supported
Requires stronger verification only when the login looks risky.
Biometric authentication — supported
Uses fingerprint or face recognition built into user devices.
Device trust signals — supported
Factors device health and enrollment status into the authentication decision.
Admin enforcement policies — supported
Lets admins mandate MFA or passwordless methods by group, app, or risk level.

Alternatives

Other MFA & Passwordless Authentication tools with overlapping capabilities, sized for similar teams.

Appears in stacks

Real-world stacks that include Cisco Duo.

Search Cyber Tool Stack

Jump to any tool, vendor, category, or glossary term.