Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
565
Views
0
Helpful
2
Replies

ISE Create Policy for Authentication Using Source AD User Allow List?

Go to solution
Lertpaiboon
Level 1
Level 1

‎08-24-2022 01:19 AM

I want to make a policy authentication for the assigned username list. I pulled the username list from MS Active Directory. I just require the Username that I specify; I do not require any other Usernames.

For example, there are 1000 total usernames in MS Active Directory, but I only require 500 of them, as defined.

  • ----- Allow list For Authen ----
  • username : Dummy1 
  • username : Dummy21
  • username : Dummy30
  • username : Dummy42
  • username : Dummy82

The remaining usernames cannot be authenticated.

How can policy authentication be created?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎08-24-2022 01:43 AM

Then I suggest is create a new group and add that 500 users to a new  Group and using that group in ISE is the best option I see here.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
2 Replies 2

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎08-24-2022 01:43 AM

Then I suggest is create a new group and add that 500 users to a new  Group and using that group in ISE is the best option I see here.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
Walker
Level 1
Level 1

‎08-24-2022 04:40 AM

I am assuming you are using 802.1x for authentication. Are you using certificate authentication? If so, is there any distinct attribute that would identify these 500 users and not the others? Example, AD Groups, OU, or Location?

0 Helpful
Customers Also Viewed These Support Documents