anyconnect custom authentication

ucjddavis1 · ‎03-01-2016

Hi

Is there a api/sdk for AnyConnect? My company would like to create a custom authentication module that would replace the RSA/OTP two-factor authentication.

Thanks in advance.

Aditya Ganjoo · ‎03-01-2016

Hi,

You can try checking the following doc:

http://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect40/administration/guide/b_AnyConnect_Administrator_Guide_4-0/customize-localize-anyconnect.html#concept_6F5FB8515AF0456C96D76F4577893FBD

Regards,

Aditya

Please rate helpful posts.

Dinesh Moudgil · ‎03-01-2016

Hi ucjddavis1,

What kind of authentication are you planning to use? Anyconnect is distributed either from headend ASA (where you use .pkg file) or on the clients (predeployed via MSI) as stated by my peer Aditya.

If you wish to replace RSA/OTP authentication, that needs to be configured at the headend as well. You can get the anyconnect apk file from appstore but not sure if you can download it as it just gets installed directly.

Regards, Dinesh Moudgil
P.S. Please rate helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/

ucjddavis1 · ‎03-01-2016

Dinesh

We are trying to replace RSA/OTP with a custom tool that provides a biometric authentication function.

Looking at the documentation link provided by Aditya, this may not be possible in Anyconnect directly. The listed there is more for gui customization and localization. We want to introduce an entirely new authentication scheme, that would then provide a login through an Anyconnect api.

Thanks again.

Dinesh Moudgil · ‎03-01-2016

Hi ucjddavis1,

Unfortunately, we don't have any support for biometric authentication but it might be incorporated later depending on the requirement.

Regards,
Dinesh Moudgil

P.S. Please rate helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/