04-02-2019 03:35 PM - edited 02-21-2020 09:00 AM
I am interested in getting all of my Cisco routers and Switches (with IOS <= 12.2) to use Azure MFA for SSH login. I do not want to use ASA or ISE or anything else like that. I would like to just authenticate them against a RADIUS or TACACS+ server, which will in turn authenticate against AD, for which I have enabled MFA via Azure AD. I expect to receive MFA prompts on my phone, then successfully login to the switch.
I would be grateful if anybody could share the details of their experiences with MFA on SSH to Cisco routers/switches. Thanks
*I know I can use Google Authenticator and Azure MFA for Linux SSH, but it requires a client module.
04-02-2019 09:01 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide