Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
335
Views
0
Helpful
3
Replies

two form of authentication to same Peer

owen2
Level 1
Level 1

‎10-12-2021 01:47 AM

Router 1101 is it possible to set two form authentication PSK and Certification to the same peer?

Existing is using PSK, intend to upgrade to Certification for better security.

Keeping PSK as a form of backend authentication 

Labels:
0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎10-12-2021 01:55 AM

This is Good question ( never come across this requirement) - since risk is bit high interms of failure of same device can bring down both the authentication, Technically i do not see any issue  they should work independently, this need to be tested.

 

Please feedback your testing, let us know any issue to understand deploy model.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

owen2
Level 1
Level 1
In response to balaji.bandi

‎10-12-2021 02:06 AM

@balaji.bandi how do I priority certification as the primary and psk as secondary?

 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to owen2

‎10-12-2021 02:54 AM

As i understand your requirement :   PSK and Certification (using same device)

 

Certificate will be predeployed in teh device, the Router act as CA server to validated.

PSK you manaully input or store when you connecting the device to SSID

 

But why do yo need 2 Authentication, when the Cert valid, you can go to user Login process with AD ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents