I should also add I confirmed with our engineering team that we have not validated running SDA “without” ISE and as such if a customer were to run this and hit a problem they would likely not be supported by TAC. Hence again I would respectfully ask ...
Respectfully we should not agree to disagree. I would ask that you help us by aligning to our common definition of SDA. The definition you are using is incorrect sorry and is not aligned to what our teams are telling the many customers we meet with....
Good question on where I get my definition of SDA I currently own technical strategy for SDA here at Cisco, and I am also one of the original engineering team members who brought SDA to life here at Cisco. From it’s inception, policy has been both ...
That was my point. SD-Access by definition is about providing both macro and micro segmentation. Without ISE then you do not really have SD-Access. You just have a fabric and VN.
Hi JoseIn the current implementation of SD-Access, ISE is a mandatory element in the solution. We use ISE to not only authenticate and authorize the on-boarding of hosts into the SD-Access fabric, but also to push policy to the fabric edge nodes that...
