cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

91
Views
0
Helpful
3
Replies
Beginner

ISE integration with OKTA on an Anyconnect VPN Connection

Hello everybody,

 

I have a customer who wants to implement an anyconnect VPN with 2FA through OKTA.  He has an ASA, ISE and they want to include the okta server in this deployment, but I don't know exactly what are the requirements and what are the connections we have to do.  I was thinking about a connection between ASA - ISE - OKTA - AD, but I'm not pretty sure if this is correct.   I have read this document https://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Borderless_Networks/Unified_Access/BYOD_Design_Guide/BYOD_Remote_Device_Access.pdf  but it shows the connection with RSA and it not shows a completely configuration and deployment.  I've been searching on the web but only found ISE+OKTA for wireless authentication, or ASA - ISE -DUO - AD, but I think DUO uses a different way for connection and communication.  I was wondering if you guys can help me with information about this topic or if you know how to implement this.

 

Thank you so much in advance.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: ISE integration with OKTA on an Anyconnect VPN Connection

Okta MFA for Cisco VPN is what I found at the vendor site. And, it has Okta MFA for Cisco VPN Integration Guide

3 REPLIES 3
Highlighted
Cisco Employee

Re: ISE integration with OKTA on an Anyconnect VPN Connection

Cisco Employee

Re: ISE integration with OKTA on an Anyconnect VPN Connection

i have done integration with okta for saml sso 

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/213754-configure-ise-2-3-guest-portal-with-okta.html

 

check it it might be helpful for you,.

 

Cisco Employee

Re: ISE integration with OKTA on an Anyconnect VPN Connection

Okta MFA for Cisco VPN is what I found at the vendor site. And, it has Okta MFA for Cisco VPN Integration Guide