25,126 questions
What URL's need to be excluded for CiscoAnyConnect always on VPN for SSO?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 37%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDC%3C/text%3E%3C/svg%3E)
Daniel Cayea
1
Reputation point
The goal is to implement always on VPN but we also need to use Azure SSO to verify identity. Someone over on Meraki community suggested that we add login.microsoftonline.com and login.live.com to the allowed hosts list in the profile, which we've done but when you enter the email address at the SSO window it just greys out and never finishes processing.
Has this been a goal of yours and you have similar setup, did you achieve success?
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT 35,626 Reputation points Microsoft Employee Moderator2024-03-19T11:02:48.09+00:00 @Daniel Cayea Thank you for reaching out to us, could you provide details on guide you are following to achieve the above ask - CiscoAnyConnect always on VPN for SSO? so that it helps us to understand your setup/configuration so that we can assist you better.
-
Daniel Cayea 1 Reputation point
2024-03-19T11:16:20.2866667+00:00 @Givary-MSFT We want to set up always on VPN, but we also use 365 SSO as identity verification. Since always-on VPN blocks connectivity until identity is verified, we need to exclude whatever urls or IP's in the VPN profile so identity can be verified.
Sign in to comment
Sign in to answer