Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
928
Views
0
Helpful
1
Replies

WAP121 or WAP321 radius timeout 2FA

cg
Level 1
Level 1

‎09-12-2017 11:39 PM - edited ‎03-21-2019 10:47 AM

Hello,

 

We have setup two factor authentication (2FA) for our wireless networks using these devices. We have tested with a DUO radius server that uses a phone as the second factor. While it works fine you have less than 7 seconds to approve the request on the phone otherwise the authentication fails. This seems to be a common issue for radius clients like the WAP121 because they do not allow you to configure a timeout. Is there any way to resolve this with either a WAP121 or WAP321?

 

Labels:
0 Helpful
1 Reply 1

cg
Level 1
Level 1

‎09-14-2017 05:23 PM

So it looks like all WAP models from the 100's to the 500's suffer from the same issue. So unless anyone can show otherwise all Cisco WAP models cannot be used for two factor authentication.

0 Helpful
Customers Also Viewed These Support Documents