04-05-2024 01:47 PM
My organization is working on migration path to Win11 (Entra joined), with hybrid user accounts. According to the below posting, it was mentioned that TEAP (EAP-TLS) is not supported for Computer authentication or EAP-Chaining.
Cisco ISE with Microsoft Active Directory, Azure AD, and Intune
I have two questions about this;
02-16-2025 12:57 PM
The feature for Device Authorization against Entra ID is no longer expected to be available until the release of ISE 3.5. No ETA can be provided, but you're likely looking at around June-July timeframe. It will likely be back-ported to a patch in 3.4 that will release after the FCS of 3.5.
02-17-2025 10:40 AM
Thanks for the info Greg.
03-14-2025 06:33 AM
Hi ,
I am bit confused... if TEAP(EAP-TLS) and EAP-FAST(EAP-TLS) with EAP Chaining are supported for this Entra AD flow from ISE 3.2 patch 5 and ISE 3.3 patch 1 due to the fix implemented by bugID CSCwd34467
Then what is the use case of Machine authentication function going to be release on ISE 3.5. Without ISE 3.5 can we use this ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide