Configure Cisco Firewall Management Center

This configuration consists of adding a new RADIUS server group and then modifying the firewall associated with Cisco Anyconnect to use the server group.

Before you begin

  • Ensure that you have the RADIUS common UDP port and secret key values available.

Procedure

  1. Sign in to the Cisco Firewall Management Center using an account with sufficient privileges.
  2. Go to ObjectsObject Management.
  3. In the left-hand column, select RADIUS Server Group.
  4. Click Add RADIUS Server Group.
  5. In the Add RADIUS Server group window, name the group.
  6. In RADIUS Servers section, click plus (+) to start the Add RADIUS server wizard.
  7. In the new RADIUS Server window, enter:
    IPAddress/HostnameIP address or fully qualified name of RADIUS server.
    Authentication portPort where RADIUS server is listening, default 1812.
    KeyRADIUS agent secret key.
    Connect usingSelect specific instance.
    Security zoneSelect the security zone. In this example, Inside.

  8. Click Save.
  9. Go to DevicesVPNRemote Access.
  10. On the row representing the firewall used by Anyconnect, click the pencil icon to edit.

  11. Select the AAA tab and then in the Authentication Server drop down, select the RADIUS server group created for Okta.


  12. Click Save.
  13. Save all changes.

  14. Select the Device policies tab.
  15. Select the updated device, and click Deploy.