Hello,
I am trying to get our ISE 2.1 clean install to speak to our Azure/Intune App.
I have followed the following guides with no luck:
http://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_01000.html
https://docs.microsoft.com/en-us/intune/deploy-use/restrict-access-to-networks
However I try and work it I get the following error:
Connection to server failed with:
Failed to acquire auth token from Azure AD. There is a problem with the Azure certificates or ISE trust store.
Please try with different settings.
I can see on the firewall the ISE making a 443 connection out when I run the test.
ISE 2.1 has the Baltimore root CA as standard
Has anyone got this working that can be more specific on the "self signed" ISE certificate as there is no information on if it needs to be "Used By" a specific function to work or not.
Also the guides don't seem to indicate exactly what the "Token Audience" should be and the default one cannot be resolved (https://api.manage.microsoft.com) but I am not sure if this matters.
Many thanks for any assistance.
Ash
