cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

234
Views
1
Helpful
2
Replies
scodavid
Cisco Employee

Multiple AD policy limitations

If you configure two (or more) different AD sources, can you use both(or more) in the same policy?

 

1 ACCEPTED SOLUTION

Accepted Solutions
paul
Advocate

Sure.  I have am doing a two domain deployment and my authorization rule for PEAP computer says "If PEAP and (member of domain #1 Domain Computers or member of domain #2 Domain Computers" then allow it onto the network.

View solution in original post

2 REPLIES 2
paul
Advocate

Sure.  I have am doing a two domain deployment and my authorization rule for PEAP computer says "If PEAP and (member of domain #1 Domain Computers or member of domain #2 Domain Computers" then allow it onto the network.

Authentication is specific to ID store, but authorization can be tied to multiple ID stores (assuming the same Identity exists in each store).

Create
Recognize Your Peers
Content for Community-Ad

ISE Webinars


Miss a previous ISE webinar?
Never miss one again!

CiscoISE on YouTube