Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1536
Views
5
Helpful
2
Replies

Discover/Recover ISE-AD join credentials

Go to solution
mattw
Level 1
Level 1

‎11-07-2021 11:41 PM

Hi,

I'll be doing an ISE upgrade for a client soon and we want to make sure we have the AD user account credentials to hand so we can rejoin ISE to AD if we need to after the upgrade.

The client is not sure what account was used when it was set up.

I'm assuming ISE uses that account each time it does a user or group lookup right?

Is there any way to find this out from a log or something what account is being used?

Thanks,

Matt.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎11-08-2021 12:20 AM - edited ‎11-08-2021 03:04 AM

@mattw Actually no, the credentials that are used for the join or leave operation are not stored in Cisco ISE. Only the Cisco ISE machine account credentials are stored. It's this ISE machine account thats created in AD that is used to communicate between ISE and AD.

https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/ise_active_directory_integration/b_ISE_AD_integration_2x.html

 

View solution in original post

2 Replies 2

Go to solution
Rob Ingram
VIP
VIP

‎11-08-2021 12:20 AM - edited ‎11-08-2021 03:04 AM

@mattw Actually no, the credentials that are used for the join or leave operation are not stored in Cisco ISE. Only the Cisco ISE machine account credentials are stored. It's this ISE machine account thats created in AD that is used to communicate between ISE and AD.

https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/ise_active_directory_integration/b_ISE_AD_integration_2x.html

 

Go to solution
mattw
Level 1
Level 1
In response to Rob Ingram

‎11-08-2021 02:50 AM

Thank you @Rob Ingram.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents