02-07-2017 02:51 PM
Hi all
Does the use of EasyConnect for authentication limit ISE's ability to send a CoA to a NAS in response to a security threat?
Danny
Solved! Go to Solution.
02-07-2017 04:18 PM
Hi Danny,
All the threat containment flows apply to Easy Connect sessions too. We have some use cases like ISE + Qualys and ISE + Stealthwatch working with EasyConnect in our labs. EasyConnect is essentially MAB from RADIUS standpoint and ISE can change the authorization on specific triggers. Is there a specific scenario where you think the combo wouldn't work?
-Hari
02-07-2017 04:18 PM
Hi Danny,
All the threat containment flows apply to Easy Connect sessions too. We have some use cases like ISE + Qualys and ISE + Stealthwatch working with EasyConnect in our labs. EasyConnect is essentially MAB from RADIUS standpoint and ISE can change the authorization on specific triggers. Is there a specific scenario where you think the combo wouldn't work?
-Hari
02-07-2017 04:28 PM
Thank you Hari. I didn't have a specific scenario in mind. I thought it should work but just wanted to confirm.
Danny
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: