Solved: Internal user in ISE with domain password policy

rezaalikhani · ‎10-05-2024

Hi;

As you know, when creating an internal user in ISE, you can force the domain password policy for that user (shadow user). For this purpose, you choose your Active Directory join point or All_AD_Join_Points in the Password Type field, as you can see below:

My question is that, how ISE resolves ambiguity problem when I choose "All_AD_Join_Points" option. In other words, if I have two users in my two distinct forests and ISE has joined to them and in these forests I have two users with exactly same common name...

Thanks

Flavio Miranda · ‎10-06-2024

@rezaalikhani

We have similar discussions here in the community

https://community.cisco.com/t5/network-access-control/same-username-in-two-domains/td-p/4470100

View solution in original post

Flavio Miranda · ‎10-06-2024

@rezaalikhani

We have similar discussions here in the community

https://community.cisco.com/t5/network-access-control/same-username-in-two-domains/td-p/4470100