Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3664
Views
0
Helpful
1
Replies

Start Before Login with AnyConnect and Okta SAML authentication

jackfait1
Level 1
Level 1

‎07-14-2021 11:27 AM

We recently switched how we log into the Cisco AnyConnect Client. We used to use hard or soft tokens with RSA and radius profiles. Now we use Okta SAML authentication with LDAP for selecting the appropriate group policy.

 

My question:

With RSA, Start before Login would work but now with Okta I receive a message - The requested authentication type is not supported during Start Before Logon. Most likely because it needs the browser for SAML authentication.

 

Has anyone ran into this and what was the solution that was implemented? Keeping RSA wasn't an option because of licensing costs.

 

Thanks,

 

1 person had this problem
Labels:
0 Helpful
1 Reply 1

Rob Ingram
VIP
VIP

‎07-14-2021 11:35 AM

Hi @jackfait1 

This is not currently possible and an open enhancement request

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm86891/?rfs=iqvred

 

0 Helpful
Customers Also Viewed These Support Documents