Solved: ISE - anyconnect 802.1x - Cisco Community

4301

Views

15

Helpful

7

Replies

any documents for doing 802.1x authentication in ISE for AnyConnect VPN clients.

1 Accepted Solution

Accepted Solutions

Additional resources:

Cisco AnyConnect Secure Mobility Client Administrator Guide, Release 4.0 - Configure Network Access Manager [Cisco AnyConnect Secure Mobility Client] - Cisco

ISE Secure Wired Access Prescriptive Deployment Guide - Cisco Community

Automated AnyConnect NAM Installation with Profile Conversion via Batch File Script - Cisco

View solution in original post

7 Replies 7

check some options :

https://integratingit.wordpress.com/tag/anyconnect/

http://www.network-node.com/identity-services-engine

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Additional resources:

Cisco AnyConnect Secure Mobility Client Administrator Guide, Release 4.0 - Configure Network Access Manager [Cisco AnyConnect Secure Mobility Client] - Cisco

ISE Secure Wired Access Prescriptive Deployment Guide - Cisco Community

Automated AnyConnect NAM Installation with Profile Conversion via Batch File Script - Cisco

Thank you Guys,

https://community.cisco.com/t5/security-documents/ise-secure-wired-access-prescriptive-deployment-guide/ta-p/3641515#toc-hId--734936021

Doc here says switch config for 802.1x. Since there are no switches in anyconnect VPN, 802.1x still works?

@manvik you don't use 802.1x with VPN, only wired or wireless.

AnyConnect software has different modules for different connections methods. If connecting using the VPN you use the AnyConnect Secure Mobility Client. If you wish to use AnyConnect as the supplicant for wired or wireless 802.1x then you use the AnyConnect Network Access Module (NAM).

Thank you @Rob Ingram . does that means ISE 802.1x auth is not possible for anyconnect VPN ?

current setup is remote Anyconnect user > ASA > ISE > AD

@manvik you can still authentication the AnyConnect VPN users to ISE just not using 802.1X.

Here is an example

Anyconnect is working fine with ISE as of now. We were trying to bring 802.1x auth for AnyConnect users.

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community