Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
42188
Views
11
Helpful
18
Replies

ISE using Azure MFA and AD

Go to solution
imsheikh
Cisco Employee
Cisco Employee

‎02-01-2017 11:34 AM

Are there any white papers on configuration VPN Authorization in ISE using Azure MFA and AD?

2 people had this problem
18 Replies 18

Go to solution
chacy2000
Level 1
Level 1
In response to paul

‎06-12-2020 07:11 AM

ISE

@paul wrote:
It should be the same. At the end of the day it is just RADIUS calls into NPS. You can match on different RADIUS attributes in NPS if you want to build different policies. If you are ultimately going to go against ISE I would recommend keeping your NPS policy as generic as possible. Basically just have it run the MFA process. All the AD group checking stuff can occur in ISE.



RADIUS Token Server Supported Authentication Protocols

ISE Radius token with NPS solution only supported PAP protocol (ISE 2.4). Do you know if MSCHAPv2 protocol is now supported by ISE?

 

https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/admin_guide/b_ise_admin_guide_22/b_ise_admin_guide_22_chapter_01101.html

 

0 Helpful

Go to solution
Arjun Bhamra
Level 1
Level 1

‎11-09-2020 06:36 AM - edited ‎11-09-2020 06:36 AM

Is there any document that integrates Azure MFA on cloud 2020, with any-connect and all authorization from ISE, but Without ON PREM azure server . Microsoft no longer allows ON prep Azure MFA server. Has to be without DUO.

0 Helpful

Go to solution
vsurresh
Level 1
Level 1
In response to Arjun Bhamra

‎11-09-2020 06:44 AM

https://www.google.com/amp/s/packetswitch.co.uk/cisco-anyconnect-with-azure-ad/amp/

Here you go. I have the similar set up.

Authentication on Azure AD
Authorization on ISE.
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents