03-28-2022 07:11 AM
04-15-2022 02:51 PM
Talk to your AD admins. They can do whatever they want to the controllers, but you can only read group memberships from them - hence the name Read Only Domain Controller.
04-12-2022 07:09 AM
The ISE PIC 3.1 Admin guide says
Cisco ISE does not support Read-only Domain Controller for authentication flows.
But ISE PIC does not perform authentication - it is passive and only receives events for username to IP login/mapping events.
04-12-2022 07:15 AM
Hello Thomas ,
can we deploy agents in Read-Only Domain Controllers and learn active connections from there ?
Thank you in advance.
04-15-2022 02:51 PM
Talk to your AD admins. They can do whatever they want to the controllers, but you can only read group memberships from them - hence the name Read Only Domain Controller.
06-01-2024 01:09 AM
Hi thomas ,
I am not asking about under ISE PIC. To join RODC with ISE do we need to join RODC as active directory or under LDAP? Is it possible to join RODC as Active directory (not under LDAP) for the authentication purpose? Because I see some authentication protocol limitations under LDAP.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide