Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
633
Views
0
Helpful
1
Replies

Cisco ISE user mapping

frontier
Level 1
Level 1

‎06-08-2016 08:44 AM - edited ‎03-10-2019 11:50 PM

Hello,

I am going to install Cisco ISE in our network and I'm curious if there is a way to manipulate usernames? My Active Directory is using usernames in format Axxxxx eg A15109 and I'd like my users to be able to get into switches & routers using name.surname format which then will be converted to Axxxxx and passed to AD for authentication?

The reason behind it is that I'd like to see who is logged into a device and these Axxxx numbers are not very readable... also, I'd prefer to see a different format in logs so I don't have to "translate" Axxxx to name&surname all the time... any ideas?

Cheers for any help!

Labels:
0 Helpful
1 Reply 1

nspasov
Cisco Employee
Cisco Employee

‎06-13-2016 05:58 PM

Hi there, I believe you can do this with the "Identity Rewrite" function in ISE. Go to:

Administration > Identity Management > External Identity Sources > Your AD > Advanced Settings > Identity Rewrite. 

Also, as a side note, it is always recommended that you use local admin/password for device administration and not AD ones. That way, if your AD controller gets compromised, your network administration would still be secured. 

I hope this helps!

Thank you for rating helpful posts!

Thank you for rating helpful posts!
0 Helpful
Customers Also Viewed These Support Documents