Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2927
Views
0
Helpful
2
Replies

ISE and Azure AD Integration

Gaurav Sharma
Cisco Employee
Cisco Employee

‎09-17-2018 06:46 AM

Hi Team,

 

does ISE supports integration with Azure AD now and will Cisco AnyConnect support checking if a machine is joined to Azure AD?

 

 

 

-Gaurav

1 person had this problem
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-17-2018 07:25 AM

ISE support AD integration in general. It doesn't care whether it is on-premises, off-premises or cloud-based.

 

As long as you deployment can join to the AD instance(s) it can use AD as an external identity store and check for Authentication and Authorization conditions (including machine membership) per your configured policy sets.

0 Helpful

Arne Bier
VIP
VIP
In response to Marvin Rhoads

‎09-17-2018 03:51 PM

I am starting to wonder whether it may make more sense to use LDAP for authentication to an Active Directory, instead of going the whole hog with an AD Join Point.  If the use case only requires user authentication and a few groups, then the single LDAP connection (TCP port) might be all you need.  And you could expose that secure port on your cloud based VM.  And of course use LDAPS (Secure LDAP) !!!

0 Helpful
Customers Also Viewed These Support Documents