Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
215
Views
0
Helpful
0
Replies

SAML authentication against Azure AD and separate group policies

spfister336
Level 2
Level 2

‎11-09-2023 11:48 AM

We are using an ASA 5525-X to provide our users remote access VPN to our internal network. Recntly, we've moved from locally-defined users to authenticating using SAML against our Azure AD server. This has been working fine, but with the locally-defined users we had separate group policies and connection profiles to provide separate address pools and separate access to certain resources. In trying to add the second trustpoint, we ran into an issue. In the config, under:

webvpn

   saml idp <our saml URL>

  trustpoint idp AzureAD-AC-SAML-NEW

It's only allowing us to have one of the 'trustpoint idp' lines. Is it not possible to do what we need? The biggest goal right now is to have various groups of users using different address pools.

Thank you!

 

0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card