Cisco Community
English
Register
Speak French? Now you can ask your questions in the new French Community! CLICK HERE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel

NEAT with Interface Template

2422
Views
13
Helpful
1
Comments
hariholla
hariholla Cisco Employee
‎03-15-2018 04:09 PM
edited on: ‎03-15-2018 ‎04:09 PM

This document explains how to configure Cisco ISE and Catalyst switches for Network Edge Authentication Topology (NEAT) using Interface Templates

Comments
shamax_1983
shamax_1983 Participant
Participant
‎09-18-2018 07:17 PM
‎09-18-2018 07:17 PM
Hi Hari, Thanks for the Doc. Good info - as always. However, Based on my testing, it looks like the functionality of "assigning a new Interface-Template dynamically" is full of bugs on multiple different IOS versions (specifically I have tried this with 3850 IOS-XE 16.3.7 and 16.9.1 with ISE 2.3 Patch4). Can you please comment on this, as we've been trying to implement this as part of Flexible-Auth, so, a port can handle PCs/Phones/WAPs/Edge-Swtiches without any static port assignments (essentially, a one port config to rule them all, or at least most of them) - which sounds like a sensible "no-brainer" kind of a thing to do. But in reality, this feature seems like not well-tested functionality from Cisco's end. Just wanted to check with you your thoughts around this as I have seen some great CiscoLive sessions and other presentations from you covering this topic. Thanks
Latest Contents
can anyone pelase help em with these questions. Thank you
Created by mohsenali786 on 08-17-2019 07:14 PM
0
0
0
0
Hello, I just started my security plus class and my teacher has asked that every student turns this in.  i am not sure where to look because most of this isn't in the book and google has way too much information to sort through and on top of tha... view more
Configure IPsec Remote Access VPN on Cisco CSR 1000v on AWS
Created by Mohammed Ismail Shareef on 08-17-2019 02:56 PM
1
0
1
0
Hello Everyone, I am trying to configure a IPsec remote access VPN on a Cisco CSR 1000v on aws cloud but I'm unable to find any proper configurations for Cisco CSR 1000v Router. I have tried standard Cisco IOS Router configuration but nothing works.&... view more
FirePOWER add latency without any visible reason
Created by Oleg Volkov on 08-17-2019 05:44 AM
0
0
0
0
Hello!I have ASA with FirePOWER (no AMP and URL). And have many (over 10) zones.yesterday my SIP server sometimes  loss registration and vice also have poor quality.I try to PING 8.8.8.8 and get floating delay from 25 to 500! ms.i exclude sip server ... view more
Firepower and AnyConnect NAM compatibility
Created by jdonjuanl on 08-16-2019 03:44 PM
1
0
1
0
Hello We are planning the migration of an ASA5540 to a Firepower 2110.The new implementation will use AnyConnect for remote access and ISE will be used as RADIUS server.The module NAM in anyconnect is compatible with Firepower versión 6.2.x? Accordin... view more
blocking connections between servers
Created by jessica jestol on 08-16-2019 02:14 PM
1
0
1
0
I'm using an ACL to limit access for one of my anyconnect users. The ACL does it's job and restricts the user from being able to connect to anything but the permitted IPs. However, once the user connects to a permitted server, they can then ssh to other s... view more
CreatePlease to create content
Discussion
Blog
Document
Video
Content for Community-Ad
July's Community Spotlight Awards