05-09-2023 08:59 AM
Hi all,
I saw a conversation about this from a few years ago. Can someone at Cisco please confirm if ISE supports EAP-SIM, EAP-AKA, or EPS-AKA, of if there are plans to do so.
If not, do enterprises still have to rely on CPAR, and how would that interoperate with an existing ISE deployment? Or would CPAR be a separate radius implementation with its own policy rules?
Do any enterprises actually use CPAR? it seems to be more for mobile carriers?
thanks
Solved! Go to Solution.
05-09-2023 10:32 AM
CPAR = Cisco Prime Access Registrar? I don't know much about the product but my understanding is it is purpose built for the service provider space and does not target enterprise use-cases like ISE.
05-09-2023 10:32 AM
CPAR = Cisco Prime Access Registrar? I don't know much about the product but my understanding is it is purpose built for the service provider space and does not target enterprise use-cases like ISE.
05-09-2023 05:32 PM
Hi @mamckenn
I spent some years working with CPAR and it's a great RADIUS/DIAMETER server for service provider customers. EAP-SIM/AKA requires a lot of backend connectivity to the service provider's HLR (Home Location Register) using SIGTRAN or whatever else they use these days. It's a whole other world. Has no place in Enterprise networking.
I can't say for sure, but ISE will never support EAP-SIM/AKA etc because Enterprise customers have no means to communicate with a service provider's HLR.
Are you asking in relation to OpenRoaming perhaps?
05-10-2023 04:17 AM
Hi, can someone at Cisco please give the the definitive answer for this please. Please don't try to second guess the architecture, at this stage i just simply need to know if ISE supports EAP-SIM, EAP-AKA, or EPS-AKA, of if there are plans to do so. thanks
05-10-2023 05:32 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide