Hi,
In regards to TrustSec-ACI Policy Plane Integration, what is the high availability architecture between ISE and ACI, assuming both solutions are fully redundant (i.e. multiple ISE PANs/MNTs/PSNs and ACI-DC Controllers)? How does the failover function (if any)?
Also, in order to setup the integration, the various Cisco guides available mention that the SXP service is required to be enabled. Does this mean an SXP connection is setup from ISE PSNs to ACI-DC Controllers, or is it just for internal ISE purposes?
From packet captures in the lab, I dont see any SXP connections however I do see active TCP connections over port 443 between the ISE PAN and ACI-DC Controller...
Thanks,
Denis
