cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4288
Views
15
Helpful
7
Replies

ISE - anyconnect 802.1x

manvik
Level 3
Level 3

any documents for doing 802.1x authentication in ISE for AnyConnect VPN clients.

1 Accepted Solution
7 Replies 7

balaji.bandi
Hall of Fame
Hall of Fame

manvik
Level 3
Level 3

Thank you Guys,

https://community.cisco.com/t5/security-documents/ise-secure-wired-access-prescriptive-deployment-guide/ta-p/3641515#toc-hId--734936021

Doc here says switch config for 802.1x. Since there are no switches in anyconnect VPN, 802.1x still works?

@manvik you don't use 802.1x with VPN, only wired or wireless.

 

AnyConnect software has different modules for different connections methods. If connecting using the VPN you use the AnyConnect Secure Mobility Client. If you wish to use AnyConnect as the supplicant for wired or wireless 802.1x then you use the AnyConnect Network Access Module (NAM).

Thank you @Rob Ingram . does that means ISE 802.1x auth is not possible for anyconnect VPN ?

current setup is remote Anyconnect user > ASA > ISE > AD

@manvik you can still authentication the AnyConnect VPN users to ISE just not using 802.1X.

Here is an example

Anyconnect is working fine with ISE as of now. We were trying to bring 802.1x auth for AnyConnect users.