Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
431
Views
0
Helpful
1
Replies

PassiveID not working with AD

tayebmesbah
Level 1
Level 1

‎07-06-2018 07:32 PM - edited ‎02-21-2020 11:00 AM

Hi,

 

We are trying for week to get passiveID working with ISE running latest version 2.4.

We used the youtube video "https://www.youtube.com/watch?v=tHAKfgWr1Nc " for installation. 

 

We are not seeing any hit on the authorization policy "PassiveID_Group equal AD-Cisco:xxx.com/users/domain users.

 

Cisco Tac suggest us to use these document "

 

https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_01110.html#id_ADReqsIntroDenali

 

but the Active Directory guys are not helping us to get this done.

 

Do we need to add these :

 

  • Add Registry Keys to Allow ISE to Connect to the Domain Controller (see below)
  • Permissions to Use DCOM on the Domain Controller, on page 256
  • Set Permissions for Access to WMI Root/CIMv2 Name Space, on page 257

Thanks

 

 

 

 

 

1 person had this problem
Labels:
0 Helpful
1 Reply 1

Rob Ingram
VIP
VIP

‎07-07-2018 04:54 AM

Hi,
I've been in this situation before, the AD guys need to follow the guide step by step and make the required changes. Without the AD Team's assistance you won't be able to configure this.

HTH
0 Helpful
Customers Also Viewed These Support Documents