Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
284
Views
0
Helpful
1
Replies

Cisco ASA 5555-X AnyConnect using Duo SSO and using Client Cert

Elude
Level 1
Level 1

‎11-28-2023 12:50 PM

I have a Cisco ASA 5555-X. Uppers are asking for me to configure ASA AnyConnect using SAML. I am using Cisco Duo as my MFA and I also have Cisco Duo configured as my SSO using Azure as my Authentication Source. On the ASA I have the Authentication pointed to SAML. My question...is there a way to configure the ASA to use both SAML and Client Cert for Authentication? 

Labels:
0 Helpful
1 Reply 1

gajownik
Cisco Employee
Cisco Employee

‎12-01-2023 02:37 AM - edited ‎12-01-2023 02:38 AM

Certificate and SAML for Authentication is supported in ASA 9.18(1)+ and FTD 7.2.0+. That means that you won't be able to achieve it on ASA 5555-X as it does not support anything newer than 9.14.4.

https://www.cisco.com/c/en/us/td/docs/security/asa/asa918/release/notes/asarn918.html#reference_epy_jcy_35b
https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/release-notes/threat-defense/720/threat-defense-release-notes-72/features.html

0 Helpful
Customers Also Viewed These Support Documents