03-15-2021 06:27 AM - edited 03-15-2021 06:28 AM
Hey,
I was wondering if it's possible to apply both SGACL and dACL to the same device through ISE.
Thanks!
Solved! Go to Solution.
03-15-2021 11:28 AM
You may apply a VLAN, dACL, and SGT - and more! - in an ISE Authorization Profile for a session.
SGACLs are not applied via an Authorization Profile like the others.
SGACLs are managed using the TrustSec Matrix in ISE and applied to TrustSec/SDA enabled network devices for enforcement based on source SGTs to destination SGTs.
03-15-2021 11:28 AM
You may apply a VLAN, dACL, and SGT - and more! - in an ISE Authorization Profile for a session.
SGACLs are not applied via an Authorization Profile like the others.
SGACLs are managed using the TrustSec Matrix in ISE and applied to TrustSec/SDA enabled network devices for enforcement based on source SGTs to destination SGTs.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: