One of my customer have purchased Cisco ASA and ISE. They are interested to see whether they could leverage these two technologies to implement multifactor authentication for high privilege accounts when accessing specific systems and/or segments within their internal environment.
They have Microsoft MFA for 2fa for remote access and also have an ELA with RSA secureid.
Their queries are:-
· Is it possible to prompt a user for their second factor if they RDP to a windows server or telnet/SSH to a linux machine?
· Is it possible to prompt for second factor when accessing a highly sensitive network segment?