https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115331#M561584 <P>Hi,</P><P>Can we consider the attached&nbsp; as part of&nbsp; profiling&nbsp; which is under "standard authorization profile "&nbsp;&nbsp;</P><P>Thanks</P><P>&nbsp;</P> Wed, 08 Jul 2020 13:51:28 GMT kp-tkr2014 2020-07-08T13:51:28Z https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115226#M561575 <P>Hi,</P><P>How to check any profiling policies applied in ISE.</P><P>If I say&nbsp;when this mac adders device&nbsp;<STRONG>00-14-22-01-23-45&nbsp; </STRONG>is accessing assign vlan <STRONG>x&nbsp; ,</STRONG>Can we consider this as profile ?</P><P>Thanks&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 08 Jul 2020 10:29:38 GMT https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115226#M561575 kp-tkr2014 2020-07-08T10:29:38Z https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115235#M561577 <P>Profiling is making a decision about a device identity based on observed characteristics and behavior.</P> <P>Assigning a MAC address to a VLAN is not profiling by itself it it's done by virtue of the MAC address being statically assigned to an endpoint group.</P> <P>If we inspect the MAC address of unknown devices to see if the first 6 bytes indicate and HP Printer OUI and then dynamically decide it's an HP printer and put it in the printer VLAN automatically as a result then it's profiling. (as an example)</P> <P>We can profile by turning the feature on at our PSN(s) and optionally customizing profiling policies.</P> <P>Only if we use the profile outcome in an Authorization result is Plus licensing required.</P> Wed, 08 Jul 2020 10:49:35 GMT https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115235#M561577 Marvin Rhoads 2020-07-08T10:49:35Z https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115331#M561584 <P>Hi,</P><P>Can we consider the attached&nbsp; as part of&nbsp; profiling&nbsp; which is under "standard authorization profile "&nbsp;&nbsp;</P><P>Thanks</P><P>&nbsp;</P> Wed, 08 Jul 2020 13:51:28 GMT https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115331#M561584 kp-tkr2014 2020-07-08T13:51:28Z https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115548#M561590 <P>No, that's not profiling.</P> Wed, 08 Jul 2020 19:32:46 GMT https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115548#M561590 Marvin Rhoads 2020-07-08T19:32:46Z https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115674#M561600 <P>See the <A href="https://community.cisco.com/t5/security-documents/ise-profiling-design-guide/ta-p/3739456" target="_blank" rel="noopener">ISE Profiling Design Guide</A> for info on what Profiling is and how it works.</P> Thu, 09 Jul 2020 01:30:45 GMT https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4115674#M561600 Greg Gibbs 2020-07-09T01:30:45Z https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4116321#M561613 <P>Marvin is right about this.</P> <P>NAD profiles are to support third-party. More info, see&nbsp;<A href="https://community.cisco.com/t5/security-documents/ise-third-party-nad-profiles-and-configs/ta-p/3648719" target="_blank" rel="noopener">ISE Third-Party NAD Profiles and Configs</A>&nbsp;</P> Thu, 09 Jul 2020 23:06:57 GMT https://community.cisco.com/t5/network-access-control/ise-profiling/m-p/4116321#M561613 hslai 2020-07-09T23:06:57Z