Important Duo Security Certificate Update: What You Need to Know

Duo has announced an upcoming change involving the expiration and replacement of the certificate authority (CA) bundle used by Duo cloud services. These certificates are essential for secure communication and ensuring that Duo integrations—such as the Authentication Proxy, VPN devices, Windows Logon, RD Gateway, and custom API applications—continue to authenticate properly. 

To avoid disruptions, all affected Duo components must be updated before February 2, 2026. Failure to update could result in authentication failures and MFA outages for protected applications. 

Duo has published full details, timelines, and version requirements here: 
👉 Duo Certificate Authority Bundle Update 

What You Should Do 

• Review all Duo integrations in your environment. 

• Confirm that applications and clients are running supported versions. 

• Ensure Duo Mobile is updated to the latest version via the iOS App Store or Google Play Store. On supported devices, updates may occur automatically if auto-update is enabled. 

• Update any out-of-date Duo components before February 2, 2026. 

• Test authentication after upgrades to ensure continued connectivity to Duo’s cloud service. 

Keeping your Duo deployments current ensures uninterrupted MFA, proper certificate validation, and alignment with Duo’s latest security standards. 

For organizations needing assistance with review, planning, or upgrades, our team can help assess your environment and ensure readiness for the upcoming certificate changes. Please reach out to our industry leading experts at service@helient.com for assistance.