I understand that the MX recently has been enabled to receive connections from
AnyConnect clients. Is it possible to set up multifactor authentication for these
AnyConnect clients? And what version is required on the MX for AnyConnect
support? TY
Solved! Go to solution.
>We have Microsoft Authenticator in place for our MFA presently.
You need to deploy Microsoft NPS (connected to Active Directory), and then install the NPS plugin for Azure AD. Users need to exist in both places. You configure the MX to use RADIUS for authentication to NPS. You need MX 16.x. Users need to have Microsoft Authenticator installed with push notifications activated.
And then you can use Azure MFA.
@MerakiMed : Check this out, Duo integrates with your Meraki Client VPN to add two-factor authentication to any VPN login. Are you looking for this ?
https://duo.com/docs/meraki-radius
We have Microsoft Authenticator in place for our MFA presently.
Is Duo the only MFA that Meraki supports?
@MerakiMed : Check this out on below link
https://documentation.meraki.com/General_Administration/Other_Topics/Two-Factor_Authentication
@MerakiMed the document you need is the one that @Inderdeep references, but the information is further down than the screenshot provided. There is also a link in there around Azure MFA - I’m not an Azure expert, so not sure if it’s what you need or not.
>We have Microsoft Authenticator in place for our MFA presently.
You need to deploy Microsoft NPS (connected to Active Directory), and then install the NPS plugin for Azure AD. Users need to exist in both places. You configure the MX to use RADIUS for authentication to NPS. You need MX 16.x. Users need to have Microsoft Authenticator installed with push notifications activated.
And then you can use Azure MFA.