I had this problem today as well. Got the "MAC address could not be removed. Address is not user configured" also. Similar to another reply below, I had to remove all port-security commands from both ports. Meaning, a) the port the MAC address was...
If your user's mailboxes are in Exchange Online then I think the Outlook client program can take advantage of the SSO as well. To me that is less of a benefit since most users just login to Outlook once and have it save their passwords.
When a user is connecting to the VPN using this method it is really cool. It is cool because AnyConnect has a built in web browser that pops up and shows whatever authentication web site you configure. In production this website is our ADFS server's ...
Incredibly helpful. Following these instructions worked perfectly. Works great with Azure MFA with no on-premise MFA servers.If anyone is like me and wants every connection to the VPN to force the user to enter their username, password and MFA info...