Solved: ACS Multi-factor

Donald Fisher · ‎06-14-2017

Hi Team,

I have a customer that wants to setup multi-factor authentication with 802.1x and Safenet Token. I have researched and do not see this is possible with ACS, but wanted to see if anyone has any ideas.

ACS can complete the 802.1x, but do not see a way to hand off to the token authentication. I see it is possible to use Safenet with their OTP setup.

kthiruve · ‎06-15-2017

Hi Donald,

Here is another thread seeking information on ACS Multifactor Authentication.

ACS TACACS 2 factor authentication

Essentially, ACS supports RSA Token ID Server and Radius Identity Server. These servers use OTP for authentication.

Typicall EAP-GTC supports OTP for authentication and Anyconnect NAM supports it. You will see the documentation from the link above of Anyconnect using Safenet for VPN not NAM. But it should be possible.

Here is the documentation for that

User Guide for Cisco Secure Access Control System 5.5 - Managing Users and Identity Stores [Cisco Secure Access Control …

Hope this helps.

Thanks

Krishnan

View solution in original post

kthiruve · ‎06-15-2017