https://community.cisco.com/t5/network-access-control/clarification-on-maximums-for-authentication-authorization-rules/m-p/3499864#M530786 <HTML><HEAD></HEAD><BODY><P>Are the maximums for Authentication/Authorization rules the number per policy set or total for the deployment?</P><P></P><P>Maximum number of Policy Sets</P><TABLE border="1" cellpadding="1" cellspacing="0"><TBODY><TR><TD colspan="1" style="border: 1px solid black;"></TD><TD colspan="1" style="border: 1px solid black;">40</TD></TR><TR><TD style="border: 1px solid black;" valign="top">Maximum number of Authentication Rules</TD><TD style="border: 1px solid black;" valign="top"><P>100</P></TD></TR><TR><TD style="border: 1px solid black;" valign="top">Maximum number of Authorization Rules</TD><TD style="border: 1px solid black;" valign="top"><P>600</P><P>Best Practice is &lt;100.</P><P>For &gt;100 rules, rendering of GUI and user access will be negatively impacted</P></TD></TR></TBODY></TABLE><P>So let’s say that I have one policy set.&nbsp; Can I add up to 100 authentication policies and 600 authorization policies to this policy set.&nbsp; Or is it any combination of up to 100 authentication and 600 authorization policies across the total 40 policy sets.</P><P></P><P>This chart was taking from the ISE Performance &amp; Scale document posted on the ISE Community Page</P><P><A href="https://community.cisco.com/docs/DOC-68347">ISE Performance &amp;amp; Scale</A></P><P></P><P></P><P>Thanks </P></BODY></HTML> Thu, 09 Mar 2017 01:28:36 GMT Keith Simmons 2017-03-09T01:28:36Z https://community.cisco.com/t5/network-access-control/clarification-on-maximums-for-authentication-authorization-rules/m-p/3499864#M530786 <HTML><HEAD></HEAD><BODY><P>Are the maximums for Authentication/Authorization rules the number per policy set or total for the deployment?</P><P></P><P>Maximum number of Policy Sets</P><TABLE border="1" cellpadding="1" cellspacing="0"><TBODY><TR><TD colspan="1" style="border: 1px solid black;"></TD><TD colspan="1" style="border: 1px solid black;">40</TD></TR><TR><TD style="border: 1px solid black;" valign="top">Maximum number of Authentication Rules</TD><TD style="border: 1px solid black;" valign="top"><P>100</P></TD></TR><TR><TD style="border: 1px solid black;" valign="top">Maximum number of Authorization Rules</TD><TD style="border: 1px solid black;" valign="top"><P>600</P><P>Best Practice is &lt;100.</P><P>For &gt;100 rules, rendering of GUI and user access will be negatively impacted</P></TD></TR></TBODY></TABLE><P>So let’s say that I have one policy set.&nbsp; Can I add up to 100 authentication policies and 600 authorization policies to this policy set.&nbsp; Or is it any combination of up to 100 authentication and 600 authorization policies across the total 40 policy sets.</P><P></P><P>This chart was taking from the ISE Performance &amp; Scale document posted on the ISE Community Page</P><P><A href="https://community.cisco.com/docs/DOC-68347">ISE Performance &amp;amp; Scale</A></P><P></P><P></P><P>Thanks </P></BODY></HTML> Thu, 09 Mar 2017 01:28:36 GMT https://community.cisco.com/t5/network-access-control/clarification-on-maximums-for-authentication-authorization-rules/m-p/3499864#M530786 Keith Simmons 2017-03-09T01:28:36Z https://community.cisco.com/t5/network-access-control/clarification-on-maximums-for-authentication-authorization-rules/m-p/3499865#M530787 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>100 Authentication and 600 Authorization rules are scale limits in total, irrespective of the configuration method; Simple mode or policy-set mode.&nbsp; </P><P></P><P>-Hari</P></BODY></HTML> Thu, 09 Mar 2017 05:33:14 GMT https://community.cisco.com/t5/network-access-control/clarification-on-maximums-for-authentication-authorization-rules/m-p/3499865#M530787 hariholla 2017-03-09T05:33:14Z