Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1940
Views
1
Helpful
1
Replies

Check if Computer Account in Active Directory is enabled/disabled

d0zer4489
Level 1
Level 1

‎05-20-2015 07:04 AM - edited ‎03-10-2019 10:44 PM

Hello Community,

 

i want to know, if its possible to check with Cisco ISE if a ccmputer account in active directory is set enabled/disabled.

We got an authorization aolicy working and want to add a check, that just enabled computer accounts in the active directory get access. Disabled Accounts should be rejected.

Do you got some ideas how i could handle this?

I found nothing in the Microsoft Dictionary provided on the ISE.

I hope you can help me, thank you.

Best Regards

Labels:
0 Helpful
1 Reply 1

jrabinow
Level 7
Level 7

‎05-26-2015 01:33 PM

There is an attribute in the Active Directory dictionary called IdentityAccessRestricted. Is a boolean and will be set to true when access for user is restricted. Needs to be leveraged in authorization policy

Customers Also Viewed These Support Documents