FIDO webauthn functionality in AnyConnect embedded browser for SAML SSO

MiguelRodriguez24531 · ‎09-21-2020

Are there plans to provide FIDO Webauthn authentication functionality in the AnyConnect embedded browser? This will allow us to leverage the FIDO Webauthn authentication support available in several SAML IdPs. Any updates on these plans will be appreciated.

JasonGates0803 · ‎08-26-2021

This is very important, we need a commitment from Cisco that they are working on this or I'll find another product that works

dotran · ‎12-02-2021

I just saw a new feature in FMC 7.1:

https://www.cisco.com/c/en/us/td/docs/security/firepower/710/relnotes/firepower-release-notes-710/features.html

Enhanced web authentication support for remote access VPN connections that use SAML authentication.

When you use SAML as the primary authentication method for a remote access VPN connection profile, you can elect to have the AnyConnect client use the client’s local browser instead of the AnyConnect embedded browser to perform the web authentication. This option enables single sign-on (SSO) between your VPN authentication and other corporate logins. Also choose this option if you want to support web authentication methods, such as biometric authentication, that cannot be performed in the embedded browser.

We updated the remote access VPN connection profile wizard to allow you to configure the SAML Login Experience.

pcookhayboo · ‎02-11-2022

Adding to this. We would really appreciate more features in the AnyConnect browser.