Is there any reason why we would need an ACS and ISE, as my understanding is the ISE alone would be sufficient?
We are looking to deploy a wireless network supporting a mixture of corperate device and BYOD.
Corperate users would be required to be Authenticated via AD which I believe the ISE can support.
Other users would be Authenticated via the ISE portal.
Keep in mind that ISE doesn't do TACACS+, so you can't use it for standard management access and command authorization of Cisco devices as with ACS.
Thanks for that, very good point, but TACACS+ is not required.
Authentication is only required for Wireless users.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: