Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
869
Views
5
Helpful
1
Replies

FTD RA VPN ISE dACL - AD and local user db

Go to solution
Berrocal
Level 1
Level 1

‎08-03-2022 06:10 AM

I have a customer who owns ISE admin but not FTD admin so they want to do dACL for RA VPN so they can skip the Access Control Policy on FTD. (So the less they have to ask to the FTD team the better).
They want AD integration for authentication but also need a local database for non-corporate users (external users).

Can they have both AD and local authentication and authorization done through ISE (so FTD would just reference ISE for both)?
I'm thinking FTD authentication should go to ISE and ISE would check with AD, if user is not in AD then check local user base).

(then they will add DUO MFA... but I guess I'll post that with DUO after this is confirmed...)

P.S. Does dACL require posture capable license?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ahollifield
VIP
VIP

‎08-03-2022 09:48 AM

Yeah the internal users would be moved into ISE, then your ISE policy would reference AD and internal users.  

dACL does not require Premier Licenses.  

View solution in original post

1 Reply 1

Go to solution
ahollifield
VIP
VIP

‎08-03-2022 09:48 AM

Yeah the internal users would be moved into ISE, then your ISE policy would reference AD and internal users.  

dACL does not require Premier Licenses.  

Customers Also Viewed These Support Documents