Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
587
Views
0
Helpful
2
Replies

AnyConnect with Azure AD

Go to solution
jf1134
Level 1
Level 1

‎02-03-2024 09:38 AM

I'm having an issue after logging in. I went through all the config set. When I login I get prompted for username and password but after I confirm it on MS Auth I get 

Can’t reach this page
Make sure the web address https://abc.domainname.com is correct

I can go to https://abc.domainname.com and the site comes up and and the see the Alias but I get this

This abc.domainname.com page can’t be found
No webpage was found for the web address: https://abc.domainname.com/+CSCOE+/SAML/SP/Test-MFA
HTTP ERROR 404

abc.domainname.com has a valid DNS A record that points to the ASA public IP.

I'm not sure what else to check.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Ruben Cocheno
Spotlight
Spotlight

‎02-03-2024 11:48 AM

@jf1134 

Can you check if you following the format below? Don't recall if it depends of the version

 a. Identifier (Entity ID)  - https://<VPN URL>/saml/sp/metadata/<TUNNEL-GROUP NAME> 

 b. Reply URL (Assertion Consumer Service URL) - https://<VPN URL>/+CSCOE+/saml/sp/acs?tgname=<TUNNEL-GROUP NAME>

https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/215935-configure-asa-anyconnect-vpn-with-micros.html

Tag me to follow up.
Please mark it as Helpful and/or Solution Accepted if that is the case. Thanks for making Engineering easy again.
Connect with me for more on Linkedin https://www.linkedin.com/in/rubencocheno/

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Ruben Cocheno
Spotlight
Spotlight

‎02-03-2024 11:48 AM

@jf1134 

Can you check if you following the format below? Don't recall if it depends of the version

 a. Identifier (Entity ID)  - https://<VPN URL>/saml/sp/metadata/<TUNNEL-GROUP NAME> 

 b. Reply URL (Assertion Consumer Service URL) - https://<VPN URL>/+CSCOE+/saml/sp/acs?tgname=<TUNNEL-GROUP NAME>

https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/215935-configure-asa-anyconnect-vpn-with-micros.html

Tag me to follow up.
Please mark it as Helpful and/or Solution Accepted if that is the case. Thanks for making Engineering easy again.
Connect with me for more on Linkedin https://www.linkedin.com/in/rubencocheno/
0 Helpful

Go to solution
jf1134
Level 1
Level 1
In response to Ruben Cocheno

‎02-03-2024 12:29 PM

Thanks.. Yeah it was the Reply URL. I messed up the end and put /acs/?tgname=Test-VPN instead of /acs?tgname=Test-MFA

0 Helpful
Customers Also Viewed These Support Documents