Cascaded setup of Active Directory and RADIUS for mutlifactor authentication

Hi All,

 

 

I have a requirement on F5 VPN client to do Two Factor authentication (2FA). Is it possible to do First Factor Authentication (1FA) using Active Directory and afterward cascade request to RADIUS server to-do 2FA. My issue is that in RADIUS server I'm only doing LDAP authentication and enabling PhoneFactor as 2FA. But updating or managing AD users from RADIUS seems to be very hard to implement.

 

 

Flow: F5 <---> Active Directory (1FA) <---> RADIUS server (2FA)

 

 

Thanks in advance,

 

mnrao