Hi everyone,
I have the following question:
I have an RSA MFA environment (Cloud + 2 IDR), where I need to provide a second authentication factor for SSL VPN users (fortinet, checkpoint, ASA cisco, however, the RADIUS server for these platforms is the ISE cisco.
How can I add a second authentication factor for these SSL VPN accounts and that Cisco ISE continues to be the RADIUS server? That is, just add MFA for authentication.
Thank you very much for your time!
Regards,
Hi mauricio perez - to get additional MFA authentication in your environment you would need to target the RADIUS clients at your IDRs' embedded RADIUS servers.
Please take a look at High-Level Authentication Flow for RADIUS for the Cloud Authentication Service.
Hope that is helpful,
Ted