Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
607
Views
0
Helpful
1
Replies

ASA 5510 IPSEC VPN + DuoSecurity + FreeRadius

rguerrero02
Level 1
Level 1

‎05-04-2015 11:10 AM - edited ‎02-21-2020 08:13 PM

Hello

      I am trying to setup 2FA for IPSEC/VPN clients confgirued con my CISCO ASA 5510; I chose DuoSecurity and Linux FreeRadius to complete the setup.  I am following the instructtions on this site:  https://www.duosecurity.com/docs/cisco-ipsec..... but havent ben able to make it work. I am not sure if even need the Radius Server considering i want the firewall ASA to do the primary authentication (User-Password). Has anyone done this setup before that could please help me with an overall explanation on how you configured this scenario. Any help is well appriciated, am still a network-admin-newbbie.

:)

 

 

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-04-2015 11:44 AM

I've used DuoSecurity's product plus local authentication successfully for a remote access SSL VPN coming into an ASA.

Is there a reason why you're using the older IPsec client (or are you using AnyConnect with IPsec IKE v2)? I ask because the old client is deprecated and no longer supported. It has issues working with Windows 8 and later OSes. 

That aside, as with any problem, start by breaking it into small pieces. I'd recommend starting with local authentication only. Get that working. Once it is then add in the two factor bit. I followed the Duo instructions and found them to be pretty spot on in my case.

0 Helpful
Customers Also Viewed These Support Documents