Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1645
Views
10
Helpful
1
Replies

Cisco ISE and CAC Login

TW80CJ5
Level 3
Level 3

‎11-24-2020 07:45 AM

Good Morning,


We are configuring Cisco ISE to use CAC login. We have it working with the switches and it prompts us for the PIN just like it should. Great!

 

We are wanting to configure ISE with our ASA 5545X's. We currently use ASDM to manage our ASA's and would like the PIN prompt to happen with the ASDM login prompt. Is this possible to configure in ISE...???

 

Also, is it possible to log off the session when the CAC is removed? Is this a setting in ISE?

1 person had this problem
0 Helpful
1 Reply 1

Ketchup57
Level 1
Level 1

‎11-15-2021 05:07 AM

Does Anyone have any experience in general with getting this to work? My assumption is for this to work you would need ISE working in away with the ASA and how it uses Any Connect. Atleast based off of everything I've seen. The problem is there is absolutely no examples given for this. Need to know of a proper way for ASDM and the asa to accept x509 certs. Every example doc utilizing CAC Card login only has it working on routers and switches as their examples.

 

Customers Also Viewed These Support Documents