Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
249
Views
0
Helpful
0
Replies

AnyConnect with Duo SAML - Pass Through IP address from AD?

garybrophy
Level 1
Level 1

‎09-22-2022 02:17 AM

Hi All,

Customer was using the Auth Proxy and radius connection to NPS server. They have some 3rd party contractors that get IP addresses passed from AD when the logged in so they have specific rules applied to them.

Customer decided to go with SAML in the cloud. Everything works well with this setup apart from getting the IP address passed from AD.

I found this article that seems to suggest it is possible to get radius attributes passed from AD "* When integrated with a RADIUS server for authorization"

https://community.cisco.com/t5/security-knowledge-base/duo-integration-options-for-cisco-anyconnect-vpn-with-asa-and/ta-p/4114832#toc-hId--976091922

Under the profile on Anyconnect I have added the Authorization Server but I dont get the IP address 

Has anyone been able to get that working with SAML?

Thanks

Gary

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents