Solved: Service Selection Rules in ISE

fuhrersk8 · ‎10-25-2021

Hello Guys;

How does the ISE selects the appropriate policy rule set for TACACS or RADIUS respectively?

In ACS was via the Service Selection Policy.

Thanks for your support.

Regards,

Greg Gibbs · ‎10-26-2021

No configuration is needed. It is the default (and only available) behaviour of ISE.

View solution in original post

Marcelo Morais · ‎10-25-2021

Hi @fuhrersk8 ,

please take a look at the following locations:

at Work Center > Device Administration > Device Admin Policy Sets

at Administration > Policy > Policy Set

Hope this helps !!!

fuhrersk8 · ‎10-25-2021

Thanks Marcelo;

But how ISE determines to either use the Device Admin Policy Set or the Network Access Policy set?

Thanks for your support.

Regards,

Greg Gibbs · ‎10-25-2021

The Device Admin Policy Sets and related policy elements are used when TACACS+ requests are received. All RADIUS requests will use the Network Access Policy Sets and related policy elements.

fuhrersk8 · ‎10-25-2021

Thanks Greg;

Understood.

But it is not explicitly configured as in the ACS Service Selection Rules set? Or it is just a “default” behavior of the ISE?

Greg Gibbs · ‎10-26-2021

No configuration is needed. It is the default (and only available) behaviour of ISE.

Service Selection Rules in ISE

New Feature: Scheduling for Internet Rules is Generally Available

Access Policy Rules API is now available!

DFS (Dynamic Frequency Selection) の動作例とその対応

Cisco Identity Services Engine (ISE) Trainings

Re: Understanding BGP Best Path Selection & Manipulation