Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We're using Microsoft CA as internal CA for EAP-TLS authentication for endpoints. We'd like to use CSR to apply the certificates for pxGrid service from Microsoft CA servers. May I ask if any prerequisites for it ?
I am implementing 802.1x authentication for Wireless and Wired networks. May I ask how to block the client in ISE ? Is it possible to add the client mac into blacklist in ISE ?
We have one domain "abc.dctst.com" and it's part of the forest "dctst.com", now we're using EAP-TLS to carry out Wireless network authentication for the users who are under the domain "abc.dctst.com". And there are several domains under same forest, ...
I would like to see if it's possible to integrate Cisco ISE with Azure AD Multi-Factor authentication. Now I'm using Network Policy Server (NPS) to do Azure AD Multi-Factor authentication. Here is the netflow and configuration for easy understanding....
Hello Rob, thanks for your information.If the certificates contain the client Authentication and Server Authentication fields, is the certificate for ISE pxGrid server ? Not for ISE pxGrid client ?
Hello, If the communication between ISE and LDAP server is using LDAPS (port 636), does the LDAP server return the binary of certificate to ISE ? Is the “userCertificate” attribute only for domain user certificate ?
Thank you, Rob,I just implemented one local exception to manage the blacklist. And it works smoothly in my environment. I am wondering if I can have alternative to do. Like use AD group (security group) to manage/control.
