Re: ISE Issue with AD

Abdelrahman salah · ‎11-18-2022

Hello all,

We completed the integration between the Ise and Active Directory, but I can't access any device by radel@internal.XXXXXX.com should be use internal\radel . Despite the fact that I can open any PC by radel@internal.XXXXXXX.com

Ise version : 3.1.0.518

How to solve it

Milos_Jovanovic · ‎11-18-2022

Hi @Abdelrahman salah,

Could you please post another screenshot, as this one is barelly visible?

Usually, upon AD integration, Test User option works out of the box.

Kind regards,

Milos

Abdelrahman salah · ‎11-18-2022

1- error from Cisco ise

Test Username : adel@internal.XXXXXX.com
ISE NODE : ISE1.internal.XXXXXXX.com
Scope : Default_Scope
Instance : ISE

Authentication Result : FAILED

Error : Identity not found; some of the domains were not available

Processing Steps:
14:57:49:713: Resolving identity - adel@internal.XXXXX.com
14:57:49:713: Search for matching accounts at join point - internal.XXXXX.com
14:57:49:715: DNS server returned error - internal.XXXXX.com,ERROR_DNS_ERROR_DOMAIN_NOT_FOUND
14:57:49:715: LDAP search in forest failed - internal.XXXXXX.com,ERROR_DOMAIN_IS_OFFLINE
14:57:49:715: Identity resolution detected no matching account
14:57:49:715: Identity resolution failed - ERROR_NO_SUCH_USER_SOME_DOMAINS_NOT_AVAILABLE

2-

3-

4-

hslai · ‎11-19-2022

@Abdelrahman salah As I mentioned in your other discussion thread, this seems some issue with the DNS server(s) that you configured on ISE. Please work with Cisco TAC to troubleshoot further.