Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
525
Views
9
Helpful
4
Replies

ISE 2.0 - AD Integration

Mostafa.Ragab
Level 1
Level 1

‎01-09-2017 01:12 AM - edited ‎03-11-2019 12:20 AM

Hello All,

I have an Active directory server on a cloud. Can it be integrated with Cisco ISE 2.

                       Thanks in Advanve

                                 Mostafa

Labels:
0 Helpful
4 Replies 4

Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-09-2017 02:45 AM

Yes. As long as the ISE nodes can communicate with the AD server(s) via the required ports and protocols. The ISE Installation Guide appendix lists those ports.

Mostafa.Ragab
Level 1
Level 1
In response to Marvin Rhoads

‎01-16-2017 10:29 PM

So, Should I NAT the ISE IP to communicate with the AD using the nated IP or it's better to install a site-to-site VPN between the cloud and my network?

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Mostafa.Ragab

‎01-17-2017 05:28 AM

If you go straight LDAP (tcp/389), it will not be encrypted. For that reason, an external (to your site) LDAP server might be better reached via a VPN tunnel.

Here's the reference for the ports used:

http://www.cisco.com/c/en/us/td/docs/security/ise/2-1/install_guide/b_ise_InstallationGuide21/b_ise_InstallationGuide21_appendix_0110.html

The one Ravi posted earlier was specific to Microsoft Intune (their MDM solution).

Ravi Singh
Level 7
Level 7

‎01-10-2017 12:18 AM

Here is the Doc

https://docs.microsoft.com/en-us/intune/deploy-use/restrict-access-to-networks

0 Helpful
Customers Also Viewed These Support Documents