02-20-2022 06:30 PM
Hi All ,
I would like to know IPSEC VPN on Cisco ASAv can do with 2FA or not ?
- The first authentication with Radius Server
- The Secondary authentication with 2FA (RSA,VASCO,DUO)
And Application Client VPN with shrew vpn
02-20-2022 06:43 PM
Hi
I don't use shrew client but i use duo for authentication on some ipsec vpn and 2FA works.
Here a link of duo configuration: https://duo.com/docs/cisco-ipsec
With duo as a proxy it can send the authentication to your local radius (ise for example) and provide the mfa as well:
https://duo.com/docs/ciscoise-radius
02-20-2022 06:49 PM
Thank you for information . that the information I think document reference software VPN Client with Anyconnect but I'm not sure if I use
shrew vpn can we do it? Please confirm me again.
02-20-2022 07:22 PM
The vpn client is just comnecting to the box. The box has to have the right radius server with the mfa happening.
The doc is not related to anyconnect but more asa and duo.
02-20-2022 11:38 PM
Thank you for you answer . I have a small question . what is the vpn client application from your link?
I see anyconnect from your document. I worry if I not use anyconnect vpn client that cannot implement this solution.
https://duo.com/docs/ciscoise-radius
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: