cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

10549
Views
5
Helpful
8
Replies
Jonathan Marshall
Cisco Employee

SSO auth for Anyconnect using ISE SAML identity integration

Hi all,

Our current deployment: We currently authenticate our AnyConenct users using ISE local accounts via RADIUS.

My question: Is it possible to use SSO integration on the ISE for anyconnect authentication?

The deployment would ideally look like this:

AnyConnect -> ASA -> RADIUS -> ISE -> SAML -> Pingfederate IDP (SSO)


There are ISE guides for network authentication using a portal however not for anyconnect.

Appreciate any help on this.

Thanks

2 ACCEPTED SOLUTIONS

Accepted Solutions
Jason Kunst
Cisco Employee

This is on asa and AnyConnect not ise

Please look at saml in the guide

https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect40/administration/guide/b_AnyConnect_Administrator_Guide_4-0/anyconnect-mobile-devices.html

View solution in original post