Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
362
Views
5
Helpful
2
Replies

clientless two factor login

suthomas1
Level 6
Level 6

‎10-12-2013 02:37 AM - edited ‎03-11-2019 07:51 PM

Hi,

We are looking at doing a 2Factor authentication for certain server bound traffic using asa. the requirements are, asa should prompt for 2 factor authentication when admin users login to the servers ( hosted behind the firewall ) using telnet/rdp.

The difference is , users would not be using any cisco client ( vpn client ) for this. They will be directly using telnet/rdp from their client systems to login to the servers.

Is this possible?

Thanks in advance.

Labels:
0 Helpful
2 Replies 2

Julio Carvajal
VIP Alumni
VIP Alumni

‎10-12-2013 12:29 PM

Hello,

Without any kind of client what you are looking for is cut-through proxy which is basically how to authenticate traffic that goes through the ASA.

Check this posts on my website for some options:

http://www.laguiadelnetworking.com/asa-virtual-http-and-virtual-telnet/

http://www.laguiadelnetworking.com/asa-http-redirect/

And remember to rate all of the helpful posts and susbcribe to my website

Regards,

Jcarvaja

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

suthomas1
Level 6
Level 6
In response to Julio Carvajal

‎10-15-2013 08:43 PM

Thanks , but can we do the same for rdp/usual telnet sessions via the ASA for traffic towards servers residing behind asa.

We do not want any vpn client to be installed on the user stations & want this 2fa to work.

Thanks in advance!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card