cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
129
Views
0
Helpful
1
Replies

Anycast Gateway Security Group

pinglis
Level 7
Level 7

In the Anycast Gateway configuration there is the option to assign a Security Group.

My understanding is if a port has any other authentication than "None" the Security Group would be allocated by ISE.

For "None" ports I can assign a VLAN and optionally a Security Group. 

Is the Security Group configured on the Anycast Gateway used as the "default" if no Security Group is configured on the "None" port?

Or does it serve some other purpose?

1 Reply 1

only part of your assumptions is true(e.g. u can assign SGT even w/ NONE authentication)
in fact SGT assignment is truly optional - static (via DNAC or CLI) & dynamic (via ISE AAA) or quazi (SXP)
be encouraged to read Cisco TrustSec docs.