07-15-2012 05:29 AM - edited 03-10-2019 07:18 PM
Hi everyone--trying to make sense of ISE licensing and what a client of mine is wanting to accomplish. They want to be able to do dot1X and have the machine authenticate via AD before the user even tries to authenticate and if it's not a domain machine, then do a reject access. My question is that able to be accomplished via base licensing or is that considered posturing/profiling?
Thanks all!
SJ
Sent from Cisco Technical Support iPad App
07-15-2012 11:13 AM
Scott,
Hi the requirement that you are requesting will work under the base feature set. You do not need advanced and coa is not required to make this work. You can build your authorization policies such that user authentications must pass a check for a previou successful machine authentication.
Thanks,
Tarik Admani
Please remember to rate helpful posts!
05-28-2013 02:32 AM
advanced licence is not recquired to acomplish this task .authorization policy can be used for this
02-04-2014 01:14 AM
Base license is sufficient for this.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide