https://community.cisco.com/t5/network-security/user-based-authorization-with-ise/m-p/2580248#M920515 <P>I am trying to configure ISE to limit the activitiy of individual users once they have logged in from an authorized PC into our netowrk. We basically only want them to be able to connect to specific systems. Is ISE able to do this on a per user basis?</P> Fri, 21 Feb 2020 13:21:42 GMT Bernece Johnson 2020-02-21T13:21:42Z https://community.cisco.com/t5/network-security/user-based-authorization-with-ise/m-p/2580248#M920515 <P>I am trying to configure ISE to limit the activitiy of individual users once they have logged in from an authorized PC into our netowrk. We basically only want them to be able to connect to specific systems. Is ISE able to do this on a per user basis?</P> Fri, 21 Feb 2020 13:21:42 GMT https://community.cisco.com/t5/network-security/user-based-authorization-with-ise/m-p/2580248#M920515 Bernece Johnson 2020-02-21T13:21:42Z https://community.cisco.com/t5/network-security/user-based-authorization-with-ise/m-p/2580249#M920516 <P>Yes.</P><P>One of the things you can do via your Authorization policy is to push a downloadable ACL (dACL) to the port (for wired users). For wireless users you can apply a pre-defined Airespace ACL from the WLC to the user session.&nbsp;</P> Sat, 13 Dec 2014 13:36:21 GMT https://community.cisco.com/t5/network-security/user-based-authorization-with-ise/m-p/2580249#M920516 Marvin Rhoads 2014-12-13T13:36:21Z