02-07-2017 02:51 PM
Hi all
Does the use of EasyConnect for authentication limit ISE's ability to send a CoA to a NAS in response to a security threat?
Danny
Solved! Go to Solution.
02-07-2017 04:18 PM
Hi Danny,
All the threat containment flows apply to Easy Connect sessions too. We have some use cases like ISE + Qualys and ISE + Stealthwatch working with EasyConnect in our labs. EasyConnect is essentially MAB from RADIUS standpoint and ISE can change the authorization on specific triggers. Is there a specific scenario where you think the combo wouldn't work?
-Hari
02-07-2017 04:18 PM
Hi Danny,
All the threat containment flows apply to Easy Connect sessions too. We have some use cases like ISE + Qualys and ISE + Stealthwatch working with EasyConnect in our labs. EasyConnect is essentially MAB from RADIUS standpoint and ISE can change the authorization on specific triggers. Is there a specific scenario where you think the combo wouldn't work?
-Hari
02-07-2017 04:28 PM
Thank you Hari. I didn't have a specific scenario in mind. I thought it should work but just wanted to confirm.
Danny
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide