03-30-2022 11:36 AM
Hopefully this is a simple thing I'm missing. When I expand my Policy Set, I don't see any of the Authentication Policy or Authorization Policy lines as shown in all the examples I have seen. I thought this might be a browser issue but I have tried in Chrome, Edge, and Firefox and they all look the same.
My view looks like this:
In all the tutorials the view should look like this:
I can't figure out why I don't see those additional sections of the policy set. Thanks in advance.
Solved! Go to Solution.
04-01-2022 05:58 AM
Hi @JPara1445
You are not comparing the same. Your first screenshot shows a policy set which points to an external RADIUS server sequence called DuoRADIUSSequence. It seems that authentication and authorization are done by this external server(s). Therefore, there is no reason to show the authentication and authorization rules on ISE. You will find the configuration of the external server under Administration > Network Resources > External RADIUS Server and Administration > Network Resources > RADIUS Server Sequence.
Your second screenshot shows a policy set where authentication and authorization are done on ISE.
Best regards
Martin
03-31-2022 05:30 AM - edited 03-31-2022 05:32 AM
In all the tutorials the view should look like this:
-FYSA the GUI layout between 2.x and 3.x has a complete face lift. From a layout perspective what you see in your second screenshot will not be what you see in 3.x version so that is normal. What patch level are you running?
03-31-2022 05:40 AM
Just applied the latest patch a couple days ago. Current version is 3.1.0.010.
Do you know of any tutorials showing how to work with the policy sets in 3.0? Seems like everything I can find is based on 2.X.
03-31-2022 07:07 AM
The overall workflow is pretty much the same from policy creation and components perspective. Try taking a look on YouTube there for 3.0 videos. Here are some guides that may assist too: Cisco ISE & NAC Resources - Cisco Community
04-01-2022 05:58 AM
Hi @JPara1445
You are not comparing the same. Your first screenshot shows a policy set which points to an external RADIUS server sequence called DuoRADIUSSequence. It seems that authentication and authorization are done by this external server(s). Therefore, there is no reason to show the authentication and authorization rules on ISE. You will find the configuration of the external server under Administration > Network Resources > External RADIUS Server and Administration > Network Resources > RADIUS Server Sequence.
Your second screenshot shows a policy set where authentication and authorization are done on ISE.
Best regards
Martin
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide