I would like have my two connection profiles "DefaultWEBVPNGroup" and "Azure_MFA" use SAML authentication. And I have already configured both certificates in the ASA. But I just realized in the SAML idp, I only can configure one "trustpoint idp" to unique tunnel group profile...
My question is how to make both Anyconnect profiles use SAML authentication at the same time? Thanks!
Webvpn
Saml idp https://sts.windows.net/******/
url sign-in https://login.microsoftonline.com/****/
url sign-out https://login.microsoftonline.com/***/
trustpoint idp <tunnel-group name>
trustpoint sp ASDM_TrustPoint1
no force re-authenticate
no signature
base-url https://.....