02-06-2014 01:59 AM - edited 03-10-2019 09:21 PM
Hello,
I have a problem with authentication on ISE. We don't want a scenario whereby a credential can be used more than once to authenticate with ISE.
For example.
User A authenticate with ISE with usename : danimax.
Username "danimax credential" should not be used by any other person while user A is still Online.
We want 1 credential for 1 person.
02-06-2014 02:03 AM
Please refer to below post
02-06-2014 02:15 AM
Thank you for your response.
i have checked the thread but the thread is talking about guest access.
I want to limit our employee to one device per credential so that user A will authenticate with its credential for like 10 different people.
1 credential = only 1 authentication. that is what we want to achieve.
02-07-2014 02:10 AM
02-07-2014 05:25 AM
ISE currently does not have this feature if you need to limit the number of sessions per user.
I mean if user "x" uses his smart device and phone and laptop, then the ISE does not have the feature to limit the access without device registration.
You can limit the number of sessions in the WLC per username, and it works per username.
For the Wired access, there is no way to control it on switch, you need to use AD.
Thanks.
Sent from Cisco Technical Support iPad App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide