Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
736
Views
0
Helpful
1
Replies

Multi-factor VPN authentication on ASA

bdavis
Level 1
Level 1

‎01-05-2009 11:30 AM - edited ‎03-10-2019 04:15 PM

Can the ASA be configured to leverage XAuth against both SDI (RSA token) and Windows AD? It seems we can configure only one or the other but not both. For example, if we configure authentication using SDI, the VPN client only prompts for a username and passcode. Is there a way to implement so that we are prompted for a username, passcode (RSA) and password (Windows AD via RADIUS)?

Labels:
0 Helpful
1 Reply 1

Ivan Martinon
Level 7
Level 7

‎01-09-2009 04:05 PM

Cheers,

The reason why the asa authenticates to SDI or AD and not both has to do with the fact that you need to have your AD integrated with your Token server, ASA will prompt for username and password and the AD server will instruct the ASA to request token only if this AD has the correct integration with SDI, check google for this features with AD and SDI.

0 Helpful
Customers Also Viewed These Support Documents