cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
254
Views
0
Helpful
1
Replies

Cisco FTD VPN with ISE and Azure MFA

mikiNet
Level 1
Level 1

Dear Guys, 

Is it support following scenario:

Cisco FTD with configured Remote Access VPN, authentication and authorization via Cisco ISE and MFA from Azure?

From client perspective: Client connect via AnyConnect to FTD, receive prompts for username and password (authC/AuthZ doing by ISE), after this also receive prompt from Azure to do MFA via Push/Token etc. 

I know that this scenario is supported with Cisco DUO, but what about Azure MFA ?

Any documentation ? Video ?

1 Reply 1

tishmanspeyer
Level 1
Level 1

Hi Mikinet,

You cannot do authentication and authorization by cisco ISE but you can use azure saml as a authentication which will authenticate the user as well provide you MFA and for authorization you can use cisco ISE.

https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/216268-configure-anyconnect-with-saml-authentic.html