<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00007D8eDDCAZOkta Classic EngineMulti-Factor AuthenticationAnswered2021-09-27T17:05:38.000Z2021-09-27T15:16:53.000Z2021-09-27T17:05:38.000Z

A2US.87535 (Customer) asked a question.

September 27, 2021 at 3:16 PM
Cisco AAA config with Okta Radius Agent

I went through the installation configuration document but can't seem to get the Cisco VPN to send anything to the Okta radius agent. I have the app enabled and see the radius agent listening on port 1812. When I try to login to the VPN it eventually times out. When I check the okta_radius.log I don't seen an attempt to connect from the Cisco VPN. The okta_radius.access.log file is empty. I enabled debug mode and see the agent connecting to my okta domain/44.234.52.10:443 but I don't think I'm getting that far. I think I should see something about a connection attempt from the Cisco AnyConnect VPN. I made need to check a log from Cisco but I'm not very familiar with the Cisco side of things.

  • 2 answers
  • 715 views

  • A2US.87535 (Customer)

    I do see in the ASA logs 113014. The AAA authentication server is not available.

  • A2US.87535 (Customer)

    This is resolved. Although testing the AAA server connection was successful I found the windows firewall on the radius agent server was blocking the connection to the radius agent. Once I allowed this traffic I was able to connect.

This question is closed.
Loading
Cisco AAA config with Okta Radius Agent