02-05-2017 02:41 AM
We have a project were will have to set up client VPN access on Cisco ASA with Clearpass authentication against AD plus dual factor authentication. Now comes the fun part. We have a privilege to ask the dual factor authentication developers (notakey.com) to write almost anything for the integration part. They are in a call distance from us. We thought about making HTTP(s) integration. What are your thoughts about it? Would it add to the overall system stability? Is it worth trying? The radius part is ready and we would just have to configure both platforms. My concern for the radius approach is timeout between the request to the dual authentication server and the time required for the user to respond to the challenge.
02-14-2017 09:26 AM