Solved: Question about 802.1X authentication related ISE functionality

taesung ha · ‎11-28-2017

1. I will ask you to check the functions related to Self-Service Password Reset when Active Directory authentication is interlocked.

- Separate AD Tool will be used for user password expiration alarm

- Is it possible to modify the password in Sponsor Portals provided by ISE?

(It seems that the password modification part is automatically excluded when AD is connected.)

2. 802.1X authentication failure mechanism

- When 802.1X authentication failure such as IP phone or TEST terminal is required, automatic switch to non-business network is required

Need to check this feature

(MAC authentication method is difficult to manage, so it would be better to exclude it.)

Jason Kunst · ‎11-28-2017

Please to help everyone out keep your questions separated

Have you looked at this?

https://communities.cisco.com/thread/73087

ognyan.totev · ‎11-28-2017

Yes it is possible to manage password in Sponsorportal.

Cisco IP phone work like a charm with DOT1X . But u must first enable DOT1x in telephone or directly in CALL MANAGER .

In mine deployment all IP phones about 1200 working fine with dot1x with certificate . U can use MIC certificate or CAPF certificate.

Jason Kunst · ‎11-28-2017

Please to help everyone out keep your questions separated

Have you looked at this?

https://communities.cisco.com/thread/73087