This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
I have questions regarding Admin Access, if the Admin user that i created is based on External AD.
and If i tick the read only or apply an rbac-read only policy.
It is not affecting the admin account. Once i Login, i can still write on ISE.
but if i create an internal admin account on ISE. Read only and RBAC policy is working.
Have you encountered this scenario? How to fix this.
Thanks in advance
Solved! Go to Solution.
Is the AD user only mapped to a single group leveraged in the admin access policy or multiple?
I could see ise using first match rather than least privilege for access but I have not tested it.
What ise admin groups are you trying to leverage right now?