Re: ISE 3.0 CoA for RFC 3576 supported devices

old roo · ‎09-07-2021

We are rolling out ISE currently and i have noticed the CoA errors in the dashboard.

Upon investigation i have noticed ISE is trying to talk to the RFC 3576 compliant devices using the newer standard.

I created a new device profile and set the CoA to Radius, and use the ports per RFC 3576. I basically want the devices to reauth if there is a CoA request.

Is there any additional configuration required for:

Port Bounce

Port Shutdown

Re Auth

Rerun

Last

or do i assume with the configuration above ISE knows what to send because the device conforms to the RFC ?

howon · ‎09-07-2021

Yes, that will work. By the way, what kind of devices are you trying to support?

old roo · ‎09-07-2021

they are alcatel 6860 switches.

Greg Gibbs · ‎09-07-2021

If you have a working NAD Profile for those switches, please share for others on the Community as per ISE Third-Party NAD Profiles and Configs

old roo · ‎09-07-2021

yep sure once it is working

I have TACACS, dot1x and MAB working at the moment, just trying to get CoA functional.

antonioromao · ‎12-02-2021

Hi,

Did you get it to work?

Txs,

Antonio