12-12-2018 02:30 PM
We have two policy nodes. When one goes offline the DNS name for provisioning is not updated with the IP address of the second node. What is the recommended best practice so that when the primary provisioning server goes offline, it's DNS record is updated with the IP address of the secondary node? Thanks!
Solved! Go to Solution.
12-12-2018 06:41 PM
12-12-2018 06:35 PM - edited 12-12-2018 06:36 PM
Hi
When you say provisioning is for byod features?
Or for any authorization profile?
On your authz profile, you can specify 1 fqdn but you need to have a load balancer to send the traffic to one or the other. If you just use dns, it'll do kind of hashing and some features like guest won't work correctly.
The other option, depending on your design, you can have an anycast design on the 2nd nic and then have only 1 fqdn.
If you don't setup a fqdn in your authz profile, it will return it's own hostname with its dns suffix. If services are on additional nic (not the 1st), you can configure an alias and ise will return this value.
12-12-2018 06:41 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide