Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
591
Views
1
Helpful
2
Replies

SAML and TACACS

SupportAC
Level 1
Level 1

‎02-21-2024 12:05 AM 

Is it possible to use SAML only for the second authentication factor, maintaining username and password through TACACS+ as the main method?
In accordance with what is described in chapter 7 of the manual: https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa_14-0/User-Guide/b_WSA_UserGuide_14_0.pdf.
SAML can be used to authenticate to Cisco web proxies, but after reviewing the MFA options for the second factor, I only see the "radius" option available.
What we are looking for is to know if it would be possible to use SAML only as a second factor.
Labels:
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-21-2024 07:27 AM

Are you asking about TACACS+ and SAML authentication for purposes of logging into a network device like a switch or router?

Or are you asking in the context of users gong through a WSA as a proxy?

SupportAC
Level 1
Level 1
In response to Marvin Rhoads

‎02-22-2024 12:16 AM

Hello Marvin,

The idea is to know if it is possible to use SAML only as second factor of authentication in the context of web proxy.

 

0 Helpful
Customers Also Viewed These Support Documents