ISE 2.6 AD multiple join points in same domain
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-20-2020 05:05 PM
Is it possible to have multiple AD join points that are joined to the same domain.
I am after the ability to specify different whitelisted domains for different types of authentications.

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-21-2020 07:42 AM
If you join ISE to a domain it can talk to all the other domains in that forest and any domains with a two way trust. You should be able to map in groups from those other domains and use them in your rules. You typically don't need to join the other domains specifically.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-28-2020 12:31 PM
I think I have a similar scenario. I would like to have a second join point to the same domain with a different set of groups to use in an authentication sequence for the MyDevices portal. (I only want a specific group of users to utilize the portal.)
