Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
253
Views
0
Helpful
1
Replies

ISE 3.2 - Azure REST ID vs devices

Go to solution
przemyslaw.wieczorek
Level 1
Level 1

‎02-21-2024 07:08 AM

Hi,

I have established connection between ISE 3.2 and Azure with REST ID. Users I can authenticate but I can't do the same for PCs. I know there is limitation:

 Note: ROPC is limited to User authentication since it relies on the Username attribute during authentication. Device objects in Azure AD do not have Username attributes.

But is there a way I can authenticate devices against Azure without MDM compliance? I can check PC's certificate only, but it is not what I want to have in the end.

Thank you for any suggestions.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Greg Gibbs
Cisco Employee
Cisco Employee

‎02-21-2024 01:09 PM

No. There is no way to authenticate a 'Device' in Entra ID. See this blog discussion for more detail on why and the current available options.

https://community.cisco.com/t5/security-knowledge-base/cisco-ise-with-microsoft-active-directory-azure-ad-and-intune/ta-p/4763635

 

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Greg Gibbs
Cisco Employee
Cisco Employee

‎02-21-2024 01:09 PM

No. There is no way to authenticate a 'Device' in Entra ID. See this blog discussion for more detail on why and the current available options.

https://community.cisco.com/t5/security-knowledge-base/cisco-ise-with-microsoft-active-directory-azure-ad-and-intune/ta-p/4763635

 

0 Helpful
Customers Also Viewed These Support Documents