Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Trying to configure a device admin policy set for TACACS plus, using RSA to authenticate. I can get the Authentication to work and I see ISE talking to RSA in the tacacs logs and authenticating ok, however the authorization fails and says there is n...
Did you get an answer on this at all? I have the same question. If the HSRP config is kept the same and it can find no HSRP peer, it will go active and forward traffic. But that seems messy, and keeps unnecessary config and HSRP traffic. I'm going ...
Thankyou for your time on this. Changing this setting has allowed to me successfully log onto a Cisco device now using RSA, without needing to use the advanced "continue" if user not found option! Many thanks.
Also, just to add, this does not happen if I use AD as the external ID source. Only when using RSA, so maybe a symptom of using RSA as the external ID source, as it doesn't share the username with ISE, unlike AD?
