Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2443
Views
7
Helpful
2
Replies

Machine dot1x authentication to work with both on prem and Azure AD

raymondmf
Level 1
Level 1

‎05-06-2021 10:55 AM

Has anyone been able to integrate both Azure AD and on prem AD to authenticate devices?

Labels:
0 Helpful
2 Replies 2

Greg Gibbs
Cisco Employee
Cisco Employee

‎05-06-2021 06:13 PM

The only current method for authenticating 802.1x against AzureAD requires using ISE 3.0 and ROPC.

See the Configure ISE 3.0 REST ID with Azure Active Directory TechNote for more information.

thomas
Cisco Employee
Cisco Employee

‎05-09-2021 09:06 AM

Unclear what your exact scenario and problem is.

Can you integrate on-premise AD and Azure AD with ISE? Yes.

Can you do machine authentication with ISE to on-premise AD? Yes.

Can you do 802.1X machine authentication with ISE directly to Azure AD? No.

But this should not be an issue because if you're doing 802.1X with a wired or wireless access edge at L2 (even with a telecommuter/OEAP in an employee's home) you could still authenticate to ISE in your data center with traditional on-premise AD.

See :

Compare Active Directory to Azure Active Directory

Azure AD device identity documentation

How to: Plan your Azure AD join implementation :

image.png

 

Customers Also Viewed These Support Documents