I created a NAD profile for Pica8 switch, now when I create an authorization profile I see the ACL and VLAN fields under the common tasks section but there is no DACL field shown. What should I do in my NAD profile to display the DACL field so I can type in my downloadable ACLs.
Well it shows DACL for me also when I choose Cisco and vendor but I need DACL to show for a non Cisco device. If any can tell if thats even possible within the Cisco ISE's design would be much apreciated, thanks. %23%23- Please type your reply above this line -%23%23
This looks by the current design. Downloading DACL entries to the NAD uses Cisco-AVPair, which is a Cisco vendor specific attribute (VSA).
By picking Cisco as the vendor, the NAD profile can still be used by a 3rd-party NAD, but the NAD needs emulate the same Cisco device behavior in order to request for and consume DACLs.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
