Meraki

Community

AnyConnect for MX and MFA

Solved
MerakiMed
Getting noticed
‎Jun 25 2021 10:48 AM
‎Jun 25 2021 10:48 AM

AnyConnect for MX and MFA

I understand that the MX recently has been enabled to receive connections from 
AnyConnect clients. Is it possible to set up multifactor authentication for these

AnyConnect clients? And what version is required on the MX for AnyConnect 

support? TY

0 Kudos
1 Accepted Solution
In response to MerakiMed
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jun 26 2021 2:49 PM
‎Jun 26 2021 2:49 PM

>We have Microsoft Authenticator in place for our MFA presently. 

 

You need to deploy Microsoft NPS (connected to Active Directory), and then install the NPS plugin for Azure AD.  Users need to exist in both places.  You configure the MX to use RADIUS for authentication to NPS.  You need MX 16.x.  Users need to have Microsoft Authenticator installed with push notifications activated.

 

And then you can use Azure MFA.

View solution in original post

5 Replies 5
Inderdeep
Kind of a big deal
Kind of a big deal
‎Jun 25 2021 10:51 AM
‎Jun 25 2021 10:51 AM

@MerakiMed : Check this out, Duo integrates with your Meraki Client VPN to add two-factor authentication to any VPN login. Are you looking for this ?

https://duo.com/docs/meraki-radius

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
In response to Inderdeep
MerakiMed
Getting noticed
‎Jun 25 2021 11:01 AM
‎Jun 25 2021 11:01 AM

We have Microsoft Authenticator in place for our MFA presently. 
Is Duo the only MFA that Meraki supports? 

In response to MerakiMed
Inderdeep
Kind of a big deal
Kind of a big deal
‎Jun 25 2021 11:11 AM
‎Jun 25 2021 11:11 AM

@MerakiMed : Check this out on below link

https://documentation.meraki.com/General_Administration/Other_Topics/Two-Factor_Authentication

 

Inderdeep_0-1624644662033.pngInderdeep_1-1624644683677.png

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
In response to Inderdeep
Bruce
Kind of a big deal
‎Jun 25 2021 3:42 PM
‎Jun 25 2021 3:42 PM

@MerakiMed the document you need is the one that @Inderdeep references, but the information is further down than the screenshot provided. There is also a link in there around Azure MFA - I’m not an Azure expert, so not sure if it’s what you need or not.

4B27DAF6-6A21-469E-8817-5B6748683E2F.jpeg

0 Kudos
In response to MerakiMed
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jun 26 2021 2:49 PM
‎Jun 26 2021 2:49 PM

>We have Microsoft Authenticator in place for our MFA presently. 

 

You need to deploy Microsoft NPS (connected to Active Directory), and then install the NPS plugin for Azure AD.  Users need to exist in both places.  You configure the MX to use RADIUS for authentication to NPS.  You need MX 16.x.  Users need to have Microsoft Authenticator installed with push notifications activated.

 

And then you can use Azure MFA.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.