My goal is to primary auth the user with LDAP then second auth with a duo push. Although the confusing part is there is RADIUS configuration required, even though I only want to use LDAP w/ Duo. Not sure I understand why but any configuration examples would be helpful!!
Here is mine today:
host=22.214.171.124 (AD server IP)
security_group_dn="CN=Duo Checkpoint VPN,OU=Groups,DC=domain,DC=com"
I am seeing the firewall logs that the radius server is not responding, but I am guess that just means it cannot properly authenticate my account. I know network-wise the gateways can reach the Duo proxy server.