MX AnyConnect Push - Timeout OTP

Solved
KRobert
Head in the Cloud

MX AnyConnect Push - Timeout OTP

We run an on-prem RADIUS MFA authentication system for our MFA push notification system when connecting to the Meraki AnyConnect VPN. When I connect to our AnyConnect VPN through the AnyConnect Client I typically get a push notification to my phone, accept the push and my system is authenticated and I have access. I did run into an issue though when my phone did not receive my push notification and I was forced to use the OTP that is a backup for most push notification services. Has anyone been able to change the AnyConnect like to accept a OTP when the push fails? Is there a time out setting I need to configure for this to work?   

CMNO, CCNA R+S
1 Accepted Solution
PhilipDAth
Kind of a big deal
Kind of a big deal

You can only achieve this using SAML (provided your SAML provider supports this).  Common SAML authenticators include Cisco Duo and Office 365.

https://documentation.meraki.com/MX/Client_VPN/AnyConnect_on_the_MX_Appliance/Authentication#SAML_Au... 

View solution in original post

2 Replies 2
PhilipDAth
Kind of a big deal
Kind of a big deal

You can only achieve this using SAML (provided your SAML provider supports this).  Common SAML authenticators include Cisco Duo and Office 365.

https://documentation.meraki.com/MX/Client_VPN/AnyConnect_on_the_MX_Appliance/Authentication#SAML_Au... 

KRobert
Head in the Cloud

Thanks @PhilipDAth 

CMNO, CCNA R+S
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels