Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Meraki VPN MFA / Multifactor authentication

EamonnT
Conversationalist
‎Dec 31 2020 1:50 AM
‎Dec 31 2020 1:50 AM

Meraki VPN MFA / Multifactor authentication

Hi everyone, 

I'm new to the community, 

has anyone successfully setup dual factor / multifactor authentication when Using VPN to connected to  corporate networks. We just had a security audit and its one of the things they pointed out to us. 

 

Look forward to your reply's !!

Happy new year to all! 

0 Kudos
Subscribe
1 Reply 1
KarstenI
Kind of a big deal
Kind of a big deal
‎Dec 31 2020 2:56 AM
‎Dec 31 2020 2:56 AM

There is no native integration with any MFA providers. You can use any system that uses *one* login through RADIUS and divides this login to authenticate both factors.

I use duo.com for this:

  1. User enters his AD-credentials
  2. MX sends the login to the Duo authentication-proxy (an app running on Windows or Linux)
  3. The Auth-Proxy uses this login to authenticate the User to Active Directory (or through ISE)
  4. When the Authentication is successful, the Auth-Proxy queries the Cloud to send a request to the smartphone
  5. The user accepts the login on his smart-phone
  6. The user is granted access 
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.