09-07-2021 12:10 PM
We are rolling out ISE currently and i have noticed the CoA errors in the dashboard.
Upon investigation i have noticed ISE is trying to talk to the RFC 3576 compliant devices using the newer standard.
I created a new device profile and set the CoA to Radius, and use the ports per RFC 3576. I basically want the devices to reauth if there is a CoA request.
Is there any additional configuration required for:
Port Bounce
Port Shutdown
Re Auth
Rerun
Last
or do i assume with the configuration above ISE knows what to send because the device conforms to the RFC ?
09-07-2021 02:17 PM
Yes, that will work. By the way, what kind of devices are you trying to support?
09-07-2021 03:36 PM
they are alcatel 6860 switches.
09-07-2021 06:54 PM
If you have a working NAD Profile for those switches, please share for others on the Community as per ISE Third-Party NAD Profiles and Configs
09-07-2021 07:26 PM
yep sure once it is working
I have TACACS, dot1x and MAB working at the moment, just trying to get CoA functional.
12-02-2021 07:13 AM
Hi,
Did you get it to work?
Txs,
Antonio
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: