Posturing with SAML

ashvaras — Thu, 19 Dec 2019 08:22:08 GMT

I have a customer who wants to simplify auth experience for salespeople. he asked whether he could federate AnyConnect with SSO (Okta)… Told him yes, but he’d have to migrate AnyConnect from RADIUS to SAML. But he’s also posturing devices via ISE. Question is: would migrating AnyConnect from RADIUS to SAML auth change anything about how ISE postures devices accessing the network?

Re: Posturing with SAML

Jason Kunst — Sat, 21 Dec 2019 14:53:55 GMT

I'd recommend proofing and seeing if it works, theoretically it may work but there is no official testing. SAML SSO has been focused on guest, sponsor and my devices portal access

https://community.cisco.com/t5/security-documents/ise-guest-amp-web-authentication/ta-p/3657224#toc-hId--1748277323

All technical questions from customers/partners should be directed to our public http://cs.co/ise-community for widest coverage and experience of SMEs. As many partners customers have done stuff that we haven’t.

Before asking any question please search our public forum.

This also allows for archival for the next person that has the same ask. Employees are welcome to add documents contribute to conversations only. Not post questions externally.

If there is a critical reason they can't ask there then Cisco employees are welcome to ask internally at http://cs.co/cs-ise

topic Posturing with SAML in Network Access Control

Posturing with SAML

Re: Posturing with SAML