10-16-2020 05:49 PM
For AnyConnect with a SAML integration with Azure, we can't leverage YubiKeys for Passwordless login to Azure with the embedded browser. Is it possible to launch an external browser for this capability or will the embedded browser support FIDO security keys in the near future?
Thanks
10-18-2020 07:11 PM
While you can launch the SAML SSO page from an external browser (and even authenticate there), doing so won't integrate into the AnyConnect flow. So the AnyConnect mini-browser is the only option for now.
I expect Cisco will be enhancing this capability in the coming releases as we have seen quite a significant uptake of customers using SAML-based authentication for remote access VPN. However I haven't seen any roadmap or feature announcements around that specific feature.
10-19-2020 09:27 AM
Looking forward to enhancements in the embedded browser. Today we can do an SP initiated passwordless authentication flow with Azure and a YubiKey via clientless VPN but not via AnyConnect.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: