Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
386
Views
1
Helpful
1
Replies

Authenticate on ISE using UPN and not SAM

Go to solution
JPavonM
VIP
VIP

‎03-14-2024 05:26 AM

Hi experts,

I'm new into ISE and wonder if there is a way to only accept connections from wireless devices using 802.1x-PEAP by using UPN (email address) and not the ones using SAM (pre-Windows 2000 logon).

Regards.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Greg Gibbs
Cisco Employee
Cisco Employee

‎03-14-2024 03:08 PM

My first thought would be to simply create an authentication policy that matches on the UPN suffix. If the session does not match that, it will hit the Default authC policy, which would be set for DenyAccess.

Screenshot 2024-03-15 at 9.06.51 am.png

View solution in original post

1 Reply 1

Go to solution
Greg Gibbs
Cisco Employee
Cisco Employee

‎03-14-2024 03:08 PM

My first thought would be to simply create an authentication policy that matches on the UPN suffix. If the session does not match that, it will hit the Default authC policy, which would be set for DenyAccess.

Screenshot 2024-03-15 at 9.06.51 am.png

Customers Also Viewed These Support Documents