Solved: ISE - Checks "RADIUS USERNAME" - Certificate or client config?

jphilp · ‎09-29-2022

Hi,

can anyone tell me if the "RADIUS USERNAME" attribute that ISE can use to check against is configured on a supplicant in its certificate or is it just configured within the security settings of a device?

Aref Alsouqi · ‎09-29-2022

I think that is the username value that will be presented in the access request, so it is more a supplicant value than anything else.

View solution in original post

Aref Alsouqi · ‎09-29-2022

I think that is the username value that will be presented in the access request, so it is more a supplicant value than anything else.

thomas · ‎10-01-2022

Depends on the credential and the supplicant configuration.

It is using the certificate subject's Common Name for the RADIUS username when I do EAP-TLS.

ISE - Checks "RADIUS USERNAME" - Certificate or client config?

Doc-Cisco ISE Posture p/ VPN de Acceso Remoto con Cisco Secure Client

Secure Client (AnyConnect)のCertificate Matching機能について

ISE 2.1 - Certificate Provisioning Portal の構築例

ISEを用いたAD連携による、ASAでのVPN認証（Cisco Secure Client）の設定方法について

Umbrella: SWG と Certificate Pinning の関係性について