07-29-2018 09:54 AM
Is it possible to do group mapping in ISE? I was able to do this in ACS and map an external AD group to an identity group when creating an access policy. Which would allow me to create a single authorization policy that would affect both internal and external users. I guess the terminologies might be different but I haven't been able to find anything to point me in the right direction.
07-29-2018 12:47 PM
With the use of OR in the policy conditions you can still do this just in a little bit different way.
What version of ISE are you running? The policy is a bit different between 2.2 and 2.3.
07-29-2018 07:20 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide