Configure Cisco Firewall Management Center

During this task we will:

  • Add a new RADIUS Server group
  • Modify the firewall associated with Anyconnect to use the radius server
  • Save updates and deploy.

Before you begin

  • Ensure that you have the RADIUS common UDP port and secret key values available.

To Configure Cisco Firewall Management Center

  1. Sign in to the Cisco Firewall Management Center using an account with sufficient privileges.
  2. Navigate to Objects > Object Management.
  3. In the left hand column, select RADIUS Server Group.
  4. Click Add RADIUS Server Group.
  5. In the Add RADIUS Server group dialog name the group.
  6. In RADIUS Servers section click plus (+) to start the Add RADIUS server wizard.
  7. In the new RADIUS Server dialog enter:
    IPAddress/HostnameIP address or fully qualified name of RADIUS server.
    Authentication portPort where RADIUS server is listening, default 1812.
    KeyRADIUS agent secret key.
    Connect usingSelect specific instance.
    Security zoneSelect the security zone. In this examine 'inside'.

  8. Click Save.
  9. Navigate to Devices > VPN > Remote Access.
  10. On the row representing the firewall used by Anyconnect, click the pencil icon to edit.
  11. Select the AAA tab and then in the Authentication Server drop down select the RADIUS server group created for Okta.

  12. Click Save.
  13. Save all changes.
  14. Select the Device policies tab.
  15. Select the updated device, and click Deploy.

Next steps

Test the Cisco Firepower Management Center integration