https://community.cisco.com/t5/network-access-control/ad-ou-information-for-profiling/m-p/3461929#M528645 <HTML><HEAD></HEAD><BODY><P>Not exposed today via AD Probe.&nbsp; As noted, policy based on identity can be applied via AuthZ policy.&nbsp; If have specific business requirement, you can request enhancement via Cisco account team.</P></BODY></HTML> Fri, 07 Jul 2017 15:59:02 GMT Craig Hyps 2017-07-07T15:59:02Z https://community.cisco.com/t5/network-access-control/ad-ou-information-for-profiling/m-p/3461928#M528643 <HTML><HEAD></HEAD><BODY><P>I believe the answer is no, but is there any way to utilize the Distinguish Name attribute in profiling?&nbsp; I know that is not one of the attributes queried by the AD Probe, but I have the attribute mapped over and it is capture when the device authenticates.&nbsp; I know I can utilize it in authorization rules, but was wondering if there was any way to utilize it in profiling.</P><P></P><P>I see under the profile rules the Active Directory dictionary is there, but if you click on it ISE just sits and spins and eventually nothing happens.&nbsp; </P></BODY></HTML> Fri, 07 Jul 2017 14:25:50 GMT https://community.cisco.com/t5/network-access-control/ad-ou-information-for-profiling/m-p/3461928#M528643 paul 2017-07-07T14:25:50Z https://community.cisco.com/t5/network-access-control/ad-ou-information-for-profiling/m-p/3461929#M528645 <HTML><HEAD></HEAD><BODY><P>Not exposed today via AD Probe.&nbsp; As noted, policy based on identity can be applied via AuthZ policy.&nbsp; If have specific business requirement, you can request enhancement via Cisco account team.</P></BODY></HTML> Fri, 07 Jul 2017 15:59:02 GMT https://community.cisco.com/t5/network-access-control/ad-ou-information-for-profiling/m-p/3461929#M528645 Craig Hyps 2017-07-07T15:59:02Z