02-08-2022 08:04 AM
Hello Team ,
what happens if the CISCO ISE is non functional ? What happens to the end device authentication?
Solved! Go to Solution.
02-08-2022 09:01 AM
@Network_Sarovani I assume you are referring to 802.1x RADIUS authentication?
It depends what you have configured. Use the Inaccessible Authentication Bypass (IAB) feature, also referred to as critical authentication. When configured the switch grants temporary network access to the host and puts the port in critical-authentication state, which allows devices connecting to the network whilst the RADIUS servers are down to gain network access.
02-08-2022 08:09 AM
- The idea of ISE is to provide network authentication , if down then devices will not be able to go on the network.
M.
02-08-2022 08:17 AM
It means devices which uses ISE for authentication will not work ..
Example : PC which is connected to L2 switch on which NAC is enabled on the port will not be functional ..Meaning user will not be able to communicate with other devices .
02-08-2022 08:41 AM
If you distributed environment, they fall back to other ISE, of not Device Authentication fail back to Local account ( device authentication i take this as device admin) - not end device right ?
02-10-2022 04:48 AM
End device = PC wired/wireless ,printer, network switches etc
02-08-2022 09:01 AM
@Network_Sarovani I assume you are referring to 802.1x RADIUS authentication?
It depends what you have configured. Use the Inaccessible Authentication Bypass (IAB) feature, also referred to as critical authentication. When configured the switch grants temporary network access to the host and puts the port in critical-authentication state, which allows devices connecting to the network whilst the RADIUS servers are down to gain network access.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide