Hi,
We are trying for week to get passiveID working with ISE running latest version 2.4.
We used the youtube video "https://www.youtube.com/watch?v=tHAKfgWr1Nc " for installation.
We are not seeing any hit on the authorization policy "PassiveID_Group equal AD-Cisco:xxx.com/users/domain users.
Cisco Tac suggest us to use these document "
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_01110.html#id_ADReqsIntroDenali
but the Active Directory guys are not helping us to get this done.
Do we need to add these :
- Add Registry Keys to Allow ISE to Connect to the Domain Controller (see below)
- Permissions to Use DCOM on the Domain Controller, on page 256
- Set Permissions for Access to WMI Root/CIMv2 Name Space, on page 257
Thanks