Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
435
Views
0
Helpful
1
Replies

ISE and MDM Integration behavior

erajca
Cisco Employee
Cisco Employee

‎01-08-2019 08:31 AM

I have a customer that would like to integrate Airwatch with ISE. The only criteria is to check if the device is registered. My question is in the event of the MDM service is unavailable, say for maintenance purposes, what happens to existing users that are already authenticated ? Does ISE periodicaly re-authenticate with the already re-authenticated devices ?

Does the Polling Interval disable these checks ?

Thanks,

Ed

0 Helpful
1 Reply 1

Parag Mahajan
Cisco Employee
Cisco Employee

‎01-08-2019 12:56 PM

In Authz Policy create rule on top as below

 

MDM·MDMServerReachable equals unreachable

&&

AD: External groups equals  Domain Users

 

Give  them permit access

It will counter all your scenarios.

 

 

 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents