cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
941
Views
0
Helpful
5
Replies

ISE Authentication Issue

ammar taha
Level 1
Level 1

Dears,

I have a cisco ISE 3355 and WLC 5508 and microsoft Active Directory 2008.

I joind the ISE to the ADe successfully and I can see all groups on the AD, also I integrated the ISE with the WLC.

my problem is when I created the Authentication policy on the ISE and joined to the AP by the PC nothing applied to the PC.

WLC version 7.4

ISE version 1.1.1.268

Please any one can help withthis issue,

Regards,

5 Replies 5

Amjad Abdullah
VIP Alumni
VIP Alumni

Salam Ammar,

Your issue look with the ISE side. So, I suggeest that you move your post to the Security Forums -> AAA, Identity and NAC subforum. They'll probably help you better there with the ISE.

You can move the discussion from the options on the right pane.

Regards,

Amjad

Rating useful replies is more useful than saying "Thank you"

Rating useful replies is more useful than saying "Thank you"

Thanks a lot Amjad,

I moved my issue to the AAA Identity and NAC

nspasov
Cisco Employee
Cisco Employee

Hello Ammar-

I can try to help but I am not sure I fully understand the issue. Can you please provide as much details as possible? Some screen shots would be helpful too

Thank you for rating helpful posts!

Thank you for replay

Now,I configured the ISE and integrated it with WLC now the users of the domain and Android phones can be authenticated in the ISE, but we faced a problem that the win8 could be authenticated in the ISE but win7 coldn't so please can you support us in this issue?



bhthapa
Level 1
Level 1

I suggest you to check the authentication policy for Wireless  802.1x.  Here are the steps.

Wireless 802.1X Compound Condition

Policy > Policy Elements > Conditions > Authentication >   Compound Conditions

This compound condition checks for the following attributes and values:

• RADIUS:Service-Type equals Framed

• RADIUS:NAS-Port-Type equalsWireless-IEEE802.11

This compound condition is used in the wireless 802.1X authentication   policy. Any request that matches the criteria

specified in this policy would be evaluated based on the wireless 802.1X   authentication policy.

You can also refer to this link   :-http://linkstate.wordpress.com/2011/03/31/using-active-directory-for-radius-authentication/