cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1300
Views
10
Helpful
1
Replies

ISE nodes joining to same Controlller of AD domain every time

reynaldolopeza
Level 1
Level 1

Hello Community,

 

We have Two ISE nodes configured as primary and secondary for every persona. And the two nodes (ISE01 and ISE02) join to same Active Directory Domain (Acme.com). This domain has two instance of Domain controller (dc1.acme.com and dc2.acme.com). Dc1 is the primary instance of the domain controllers and dc2 is the secondary. When joining ISE to acme domain both nodes always join to dc2.acme.com, but this controller instance have some issues, and we want ISE nodes to join the dc1.acme.com.

 

How can we make ISE to join dc1.acme.com? Or make at least ISE01 node to join dc1 controller and ISE02 to join dc2 controller?
Thank you in advanced for any suggestion.

1 Reply 1

Greg Gibbs
Cisco Employee
Cisco Employee

The Domain Controller ISE communicates with is defined by Active Directory Sites and Services. In AD, you would define a Site and the DCs and IP subnets associated with that site.

You should confirm the configuration of AD Sites and Services and ensure the IP subnet used by the ISE nodes is added to the correct Site for the Domain Controller you want each node to use.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: