Duo Beyond
  • 29 May 2024
  • 2 Minutes to read
  • Dark
  • PDF

Duo Beyond

  • Dark
  • PDF

Article summary

Duo Beyond identifies corporate vs. personal devices, blocks untrusted devices, and give users secure access to internal applications.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Devices
  • Users


  1. Duo Admin API Host (required) - The API hostname of the Duo Beyond. To get your API hostname, see the section below. This field value format is: '[instance].duosecurity.com'.
  2. Integration key and Secret key (required) - Specify the integration key and the secret key for your Admin API access. For details, see the section below.
  3. HTTPS proxy (optional) - A proxy to use when connecting to the Duo Admin API Host.

To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.


Advanced Settings


Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters

  1. Fetch endpoints (required, default: false) - Select whether to fetch endpoints.
  2. Fetch phone credits usage - Select this option to fetch users with the Telephony Logs (which contain the credit usage for each action) by phone number. This setting requires the Grant read log permission.
  3. Fetch phone credits from the specified amount of days back (required, default: 10) - Specify the amount of days back to look for credit usage logs. This setting is only relevant if Fetch phone credits usage is enabled.
  4. Fetch admin user details (required, default: true) - Clear option to not fetch admin user details.
  5. User field exclusion list (optional) - Enter a comma separated list of field names from the advanced view of the Duo Beyond user adapter that will be removed from new devices in subsequent discovery cycles from both the basic and advanced views, enabling you to exclude specific fields from being fetched. If this field is empty all fields are fetched.
  6. Fetch Phones as devices - By default Axonius fetches phones as devices. Clear this option to not fetch phones as devices.

To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.


Axonius uses the Users endpoint of the Duo Admin API.

Grant Access to Duo Admin API


Note that only administrators with the Owner role may contact Duo Support to request access to the Admin API application, or can create or modify an Admin API application in the Duo Admin Panel.

  1. Sign up for a Duo account.
  2. Contact Duo Support to request Admin API access.
  3. Log in to the Duo Admin Panel and navigate to Applications.
  4. Click Protect an Application and locate Admin API in the applications list. Click Protect this Application to get your integration key, secret key, and API hostname.
  5. Grant you Admin API application the with the following permission:
    • Grant read resource - required to fetch basic information from Duo Beyond.
    • Grant administrators - required to fetch Duo Beyond administrators, and details about their hardware tokens (serial number, etc).

For more details, see Duo Admin API.

Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.