Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
250
Views
1
Helpful
1
Replies

Azure MFA for ISE Tacacs+ usecase

rameshkumarnakka
Level 1
Level 1

‎05-26-2025 08:27 AM

Dear Team,

Can Anyone confirm or guide that can we achieve TACACS+ with Azure AD and Azure MFA

Thanks,

Ramesh

0 Helpful
1 Reply 1

Greg Gibbs
Cisco Employee
Cisco Employee

‎05-26-2025 11:30 PM - edited ‎05-26-2025 11:31 PM

No, this is not currently possible natively in ISE for multiple reasons.

  • Device Admin (T+) is not currently supported with the ROPC/RESTID flow in ISE as there is no way to secure the PAP communications.
  • Entra MFA is not compatible with ROPC as documented by Microsoft.
  • The only way ISE has to interact with Entra MFA is via SAML, which is browser-based, hence the reason SAML is only supported for ISE Portal-based flows
Customers Also Viewed These Support Documents