Meraki

Community

Cisco AnyConnect Client SMS MFA

DTheMan
Here to help
‎May 12 2022 1:01 PM
‎May 12 2022 1:01 PM

Cisco AnyConnect Client SMS MFA

Hello Everyone,

 

I am setting up Cisco AnyConnect with our MX250. For the authentication and MFA I am using radius server.  I could login to Cisco AnyConnect using MFA App and Calling feature but I can't connect to AnyConnect using SMS feature. On my phone I receive txt but on anyconnect client I don't get a pop-up to enter the passcode. 

 

does anyone know if SMS authentication is supported? 

0 Kudos
3 Replies 3
CptnCrnch
Kind of a big deal
Kind of a big deal
‎May 12 2022 1:05 PM
‎May 12 2022 1:05 PM

Get in contact with suport to have them prolong the MFA timeout. Afterwards, everything should be fine.

0 Kudos
In response to CptnCrnch
DTheMan
Here to help
‎May 12 2022 1:10 PM
‎May 12 2022 1:10 PM

I already extended MFA timeout to 180 seconds on MX250. 

 

  • Microsoft Authenticator app ( works)
  • Voice Call ( works )
  • SMS  I receive text message on my phone but CiscoAnyConnect Client on Meraki doesn't pop-up box to enter the passcode. On the CiscoAnyConnect client you get login error.
0 Kudos
In response to DTheMan
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 12 2022 1:21 PM
‎May 12 2022 1:21 PM

It doesn't support secondary authentication in that way on MX when using RADIUS.

 

It will work if you change to using SAML authentication.

https://documentation.meraki.com/MX/AnyConnect_on_the_MX_Appliance/Authentication 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.