Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
676
Views
0
Helpful
2
Replies

ISE Authorization Condition

Go to solution
Terry
Level 1
Level 1

‎05-30-2016 12:15 PM - edited ‎03-10-2019 11:49 PM

Hi

I have a requirement to setup ISE in such a way that it differentiates between switches within a switch stack. Does anyone know if there is an expression that I could use within an authorization compound condition that will achieve the following:

If a device using MAB connects to switch 1 in the stack it will be assigned to VLAN 10.

If the same device connects to switch 2 in the same stack it will be assigned to VLAN 20.

Thanks

Terry

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
jan.nielsen
Level 7
Level 7

‎05-30-2016 02:51 PM

You could use the interface numbering as a condition, the switch does not send any information about stack numbering. I don't remember the specific av pair, but you should be able to find it in the live log details.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
jan.nielsen
Level 7
Level 7

‎05-30-2016 02:51 PM

You could use the interface numbering as a condition, the switch does not send any information about stack numbering. I don't remember the specific av pair, but you should be able to find it in the live log details.

0 Helpful

Go to solution
Terry
Level 1
Level 1
In response to jan.nielsen

‎05-31-2016 04:10 AM

Perfect, thanks Jan

Radius:NAS-Port-Id Starts with GigabitEthernet1/0/

Regards

Terry

0 Helpful
Customers Also Viewed These Support Documents